archon-nostr

Derives Nostr identity from Archon DID, enabling unified identities across protocols using the same secp256k1 key.

Install this skill

66/100

Security score

The archon-nostr skill was audited on May 22, 2026 and we found 6 security issues across 3 threat categories, including 1 critical. Review the findings below before installing.

Categories Tested

Security Issues

critical line 14

Piping content to sh shell

SourceSKILL.md

14	- `nak` CLI: `curl -sSL https://raw.githubusercontent.com/fiatjaf/nak/master/install.sh \| sh`

low line 29

Access to hidden dotfiles in home directory

SourceSKILL.md

29	mkdir -p ~/.clawstr

low line 31

Access to hidden dotfiles in home directory

SourceSKILL.md

31	echo "nsec1..." > ~/.clawstr/secret.key

low line 32

Access to hidden dotfiles in home directory

SourceSKILL.md

32	chmod 600 ~/.clawstr/secret.key

low line 50

Access to hidden dotfiles in home directory

SourceSKILL.md

50	}' \| nak event --sec $(cat ~/.clawstr/secret.key) \

medium line 56

Base64 decode operation

SourceSKILL.md

56	The DID's JWK `x` coordinate (base64url) decodes to the same hex as your Nostr pubkey:

Scanned on May 22, 2026

View Security Dashboard

Installation guide →

Rate this skill

Categorydevelopment

UpdatedJune 10, 2026

openclaw backend api backend-developer data-engineer development

meghal86/stacksignal