首页龙虾技能列表 › A2a E2ee Encryption — 技能工具

A2a E2ee Encryption — 技能工具

v1.0.0

[自动翻译] Implements end-to-end encryption (E2EE) utilities for secure A2A (Agent-to-Agent) communication. Provides key generation, message encryption/decryptio...

0· 120·0 当前·0 累计
by @jpengcheng523-netizen·MIT-0
下载技能包
License
MIT-0
最后更新
2026/3/26
安全扫描
VirusTotal
无害
查看报告
OpenClaw
安全
high confidence
The skill's code and instructions are consistent with an E2EE utility library and do not request unrelated credentials or install arbitrary software, but you should review the code and secure key storage before use.
评估建议
This skill appears to implement what it claims (local crypto utilities) and does not request external credentials or install remote code. However: 1) the origin/homepage is unknown — prefer packages with a verifiable source or audit the code before use; 2) review and test the code locally (unit tests, edge cases); 3) ensure private keys are stored securely (hardware/vault or properly protected files) and never share them with other agents; 4) note minor crypto implementation details/bugs (e.g., ...
详细分析 ▾
用途与能力
Name, description, SKILL.md, and the included index.js all implement standard E2EE utilities (RSA key generation, hybrid RSA+AES encryption, signing, HMAC). The requested resources (none) are proportional to the stated purpose.
指令范围
SKILL.md focuses on encryption/key-management usage and does not instruct reading unrelated files or exfiltrating data. It advises storing private keys securely (env vars, vault) but does not provide or require a storage mechanism; you should ensure keys are stored and managed appropriately in your environment.
安装机制
No install spec or external downloads; the skill is instruction-only with a bundled index.js. No network fetch or extraction steps are present.
凭证需求
The skill requests no environment variables or credentials. The SKILL.md suggests best-practice storage locations for private keys, which is advisory only and not required by the code.
持久化与权限
always is false and the skill is user-invocable. It does not request elevated platform privileges or attempt to persist or modify other skills' settings.
安全有层次,运行前请审查代码。

License

MIT-0

可自由使用、修改和再分发,无需署名。

运行时依赖

无特殊依赖

版本

latestv1.0.02026/3/26

Initial release of A2A End-to-End Encryption utilities - Provides RSA key pair generation for secure agent communication. - Supports encrypting and decrypting messages between agents using asymmetric keys. - Implements secure key exchange, key rotation, and HMAC-based message authentication. - Includes key import/export utilities for easy key management. - Addresses key storage, rotation, validation, and hybrid encryption for large messages.

● 无害

安装命令 点击复制

官方npx clawhub@latest install a2a-e2ee-encryption
镜像加速npx clawhub@latest install a2a-e2ee-encryption --registry https://cn.clawhub-mirror.com

技能文档

Provides encryption utilities for secure agent-to-agent communication.

Features

  • Key Generation: RSA key pair generation for asymmetric encryption
  • Message Encryption: Encrypt messages with recipient's public key
  • Message Decryption: Decrypt messages with own private key
  • Key Exchange: Secure key exchange protocols
  • Key Rotation: Automatic key rotation support
  • Message Integrity: HMAC-based message authentication

Usage

const e2ee = require('./skills/a2a-e2ee-encryption');
// Generate key pair
const keyPair = e2ee.generateKeyPair();
// Encrypt message
const encrypted = e2ee.encrypt('secret message', recipientPublicKey);
// Decrypt message
const decrypted = e2ee.decrypt(encrypted, privateKey);
// Export/Import keys
const exported = e2ee.exportKey(keyPair.publicKey);
const imported = e2ee.importKey(exported);

Architecture

┌─────────────┐                    ┌─────────────┐
│   Agent A   │                    │   Agent B   │
│             │                    │             │
│ Private Key │                    │ Private Key │
│ Public Key  │◄──── Exchange ────►│ Public Key  │
│             │                    │             │
│ Encrypt     │──── Encrypted ────►│ Decrypt     │
│ with B's    │      Message       │ with A's    │
│ Public Key  │                    │ Public Key  │
└─────────────┘                    └─────────────┘

Security Considerations

  • Key Storage: Private keys should be stored securely (env vars, vault)
  • Key Rotation: Rotate keys periodically for forward secrecy
  • Key Validation: Always verify key fingerprints before use
  • Message Size: Large messages should use hybrid encryption
数据来源:ClawHub ↗ · 中文优化:龙虾技能库
OpenClaw 技能定制 / 插件定制 / 私有工作流定制

免费技能或插件可能存在安全风险,如需更匹配、更安全的方案,建议联系付费定制

了解定制服务