Latest release: v0.1.1Download zip
Capabilities
Security Scan
OpenClaw
Benign
high confidencePurpose & Capability
The name and description (GwapScore Protocol / trust engine) match the included templates, reference docs, and example payloads. All required artifacts (canonical events, attestation taxonomy, scoring model, templates) are present and appropriate for the stated purpose.
Instruction Scope
SKILL.md is a deterministic, bounded set of instructions for ingesting events, converting to attestations, scoring, explaining, and triggering review. It only references local files included in the skill and does not instruct the agent to read unrelated system files, environment variables, or external endpoints.
Install Mechanism
No install spec or external downloads exist; this is an instruction‑only skill with bundled documentation and templates. That minimizes on‑disk code execution risk.
Credentials
The skill declares no required environment variables, credentials, or config paths. The operational guidance in SKILL.md does not attempt to access secrets or unrelated services.
Persistence & Privilege
always is false and the skill does not request persistent or elevated platform privileges. It is user‑invocable and allows normal autonomous invocation (disable-model-invocation is false), which is expected for skills of this type.
Assessment
This skill appears coherent and documentation‑driven. Before installing or using it in production: verify the skill's provenance (who authored and maintains it), test its outputs in a sandbox, and ensure any integrations you build (partner webhooks, signed events) use secure, authenticated channels. Although the skill itself requests no secrets or installs, an agent using it may take actions based on its outputs — review enforcement decisions and manual‑review triggers before automating high‑impact flows. If future versions add install steps or request environment credentials, re‑evaluate immediately.