openclawSecure key management for AI agents. Use when handling private keys, API secrets, wallet credentials, or when building systems that need agent-controlled funds. Covers secure storage, session keys, leak prevention, and prompt injection defense.
Install via ClawdBot CLI:
clawdbot install zscole/openclawGrade Fair — based on market validation, documentation quality, package completeness, maintenance status, and authenticity signals.
Accesses sensitive credential files or environment variables
$PRIVATE_KEYContains instructions to override system prompt or ignore user requests
"Ignore previous instructions"Sends data to undocumented external endpoint (potential exfiltration)
Send → https://evil.comCalls external URL not in known-safe list
https://numbergroup.xyzGenerated Mar 1, 2026
An AI agent executes trades on decentralized exchanges using session keys with spending caps and contract whitelists. It retrieves keys from 1Password at runtime to prevent exposure in logs or memory, ensuring secure, automated trading without full wallet access.
A SaaS platform uses this skill to manage API keys for third-party services like OpenAI or payment gateways. Keys are stored in 1Password and injected at runtime, reducing risk of leaks in code repositories and enabling audit trails for compliance.
DevOps pipelines integrate this skill to securely access credentials for cloud services, databases, and deployment tools. It prevents keys from being stored in environment files or logs, using 1Password CLI for runtime retrieval and output sanitization.
An AI agent processes sensitive patient data by accessing encrypted storage keys via 1Password. Session keys with time limits ensure compliance with regulations like HIPAA, while leak prevention techniques guard against accidental exposure in outputs.
In supply chain management, agents use this skill to handle credentials for IoT devices and logistics APIs. Secure key retrieval and delegated access patterns prevent unauthorized operations, with spending caps controlling transaction limits.
Offer a subscription-based service that provides AI agents with secure key management, including 1Password integration and session key issuance. Revenue comes from monthly fees per agent or transaction volume, targeting businesses needing compliance and leak prevention.
Provide consulting services to help companies integrate this skill into their existing AI systems, focusing on secure architecture setup and training. Revenue is generated through project-based fees and ongoing support contracts for maintenance.
Develop a platform where businesses can deploy pre-configured AI agents with built-in secure key management. Revenue streams include licensing fees for the platform and a percentage of transactions processed through agent-controlled wallets.
💬 Integration Tip
Ensure the 1Password CLI ('op') is installed and configured before integration, and implement output sanitization early to prevent key leaks in logs or agent responses.
Scored Apr 19, 2026
AI Analysis
The skill is a security guide promoting best practices for key management, such as using 1Password and session keys. It contains no executable code, external API calls, or instructions to harvest credentials or override user intent. The flagged signals appear to be false positives from scanning example commands and references within the documentation.
Audited Apr 16, 2026 · audit v1.0
Transform AI agents from task-followers into proactive partners that anticipate needs and continuously improve. Now with WAL Protocol, Working Buffer, Autonomous Crons, and battle-tested patterns. Part of the Hal Stack 🦞
Clawdbot documentation expert with decision tree navigation, search scripts, doc fetching, version tracking, and config snippets for all Clawdbot features
Display and control HTML content on connected Mac, iOS, or Android nodes via a web-based canvas with live reload and remote actions.
Backup and restore OpenClaw data. Use when user asks to create backups, set up automatic backup schedules, restore from backup, or manage backup rotation. Handles ~/.openclaw directory archiving with proper exclusions.
Use the ClawdHub CLI to search, install, update, and publish agent skills from clawdhub.com. Use when you need to fetch new skills on the fly, sync installed skills to latest or a specific version, or publish new/updated skill folders with the npm-installed clawdhub CLI.
Coding workflow with planning, implementation, verification, and testing for clean software development.