Cryptographic signing for AI agent skills using SSH Ed25519 keys

Navigation

Verified details

These details have been verified by PyPI
Maintainers
Avatar for rdevaul from gravatar.com rdevaul

Unverified details

These details have not been verified by PyPI
Project links
Meta
  • License: MIT License (MIT)
  • Author: Dark Matter Lab
  • Requires: Python >=3.10
  • Provides-Extra: dev
Classifiers
Report project as malware

Project description

skill-signer

Cryptographic signing for AI agent skills. Establishes provenance and trust for the agentic ecosystem.

Why?

AI agent skills are powerful but present a significant attack surface:

  • Supply chain attacks: Malicious code in dependencies
  • Tampering: Modified skills after publication
  • Impersonation: Fake skills claiming to be from trusted sources

skill-signer addresses these by enabling cryptographic verification of skill authorship and integrity.

Quick Start

# Install
pip install skill-signer

# Generate a signing key
skill-signer keygen --name "Your Name" --output ~/.ssh/skill_signing_key

# Sign a skill
skill-signer sign ./my-skill --key ~/.ssh/skill_signing_key

# Verify a skill
skill-signer verify ./my-skill --allowed-signers allowed_signers

Design Principles

  1. Use existing infrastructure — SSH keys (Ed25519), not custom crypto
  2. Minimal dependencies — Core only needs OpenSSH 8.0+
  3. Compatible with OMS — Aligns with OpenSSF Model Signing spec
  4. Transitive trust — Verify entire dependency tree
  5. Revocation support — Handle compromised keys gracefully

Status

🚧 Under Development — Contributions welcome!

See SKILL.md for the full specification.

License

MIT

Authors

  • Dark Matter Lab, Relativity Space
  • Built with assistance from Jarvis (OpenClaw agent)

Project details

Verified details

These details have been verified by PyPI
Maintainers
Avatar for rdevaul from gravatar.com rdevaul

Unverified details

These details have not been verified by PyPI
Project links
Meta
  • License: MIT License (MIT)
  • Author: Dark Matter Lab
  • Requires: Python >=3.10
  • Provides-Extra: dev
Classifiers

Release history Release notifications | RSS feed

This version

0.1.0

Download files

Download the file for your platform. If you're not sure which to choose, learn more about installing packages.

Source Distribution

skill_signer-0.1.0.tar.gz (20.0 kB view details)

Uploaded Source

Built Distribution

If you're not sure about the file name format, learn more about wheel file names.

skill_signer-0.1.0-py3-none-any.whl (14.2 kB view details)

Uploaded Python 3

File details

Details for the file skill_signer-0.1.0.tar.gz.

File metadata

  • Download URL: skill_signer-0.1.0.tar.gz
  • Upload date:
  • Size: 20.0 kB
  • Tags: Source
  • Uploaded using Trusted Publishing? No
  • Uploaded via: twine/6.2.0 CPython/3.14.2

File hashes

Hashes for skill_signer-0.1.0.tar.gz
Algorithm Hash digest
SHA256 c43e34d8142ebe4bc238ac4c3b666ac068699b49f3c9b77630f0cebb9decfaf4
MD5 7e227d5ec32b6faff39194d839b9bb8c
BLAKE2b-256 4b2a67accba967e2b596cc885921eb21d77a7b615c6608d446aab8c73a766ce7

See more details on using hashes here.

File details

Details for the file skill_signer-0.1.0-py3-none-any.whl.

File metadata

  • Download URL: skill_signer-0.1.0-py3-none-any.whl
  • Upload date:
  • Size: 14.2 kB
  • Tags: Python 3
  • Uploaded using Trusted Publishing? No
  • Uploaded via: twine/6.2.0 CPython/3.14.2

File hashes

Hashes for skill_signer-0.1.0-py3-none-any.whl
Algorithm Hash digest
SHA256 94f312c4283aaedbbcebf4be60b5d8b0451a35ee2f4bc780262a47d0dd0da7ff
MD5 19694493d67117bec0d5cdec9f7b78a1
BLAKE2b-256 3501d5e5e1f697c55fb812b455a1035dfd9c86f39d1bd5a20f6007ddff4d125c

See more details on using hashes here.

Supported by

AWS Cloud computing and Security Sponsor Datadog Monitoring Depot Continuous Integration Fastly CDN Google Download Analytics Pingdom Monitoring Sentry Error logging StatusPage Status page