{ "schemaVersion": "1.0", "item": { "slug": "trustlayer-sybil-scanner", "name": "TrustLayer Sybil Scanner", "source": "tencent", "type": "skill", "category": "AI 智能", "sourceUrl": "https://clawhub.ai/goatgaucho/trustlayer-sybil-scanner", "canonicalUrl": "https://clawhub.ai/goatgaucho/trustlayer-sybil-scanner", "targetPlatform": "OpenClaw" }, "install": { "downloadMode": "redirect", "downloadUrl": "/downloads/trustlayer-sybil-scanner", "sourceDownloadUrl": "https://wry-manatee-359.convex.site/api/v1/download?slug=trustlayer-sybil-scanner", "sourcePlatform": "tencent", "targetPlatform": "OpenClaw", "installMethod": "Manual import", "extraction": "Extract archive", "prerequisites": [ "OpenClaw" ], "packageFormat": "ZIP package", "includedAssets": [ "README.md", "SKILL.md" ], "primaryDoc": "SKILL.md", "quickSetup": [ "Download the package from Yavira.", "Extract the archive and review SKILL.md first.", "Import or place the package into your OpenClaw setup." ], "agentAssist": { "summary": "Hand the extracted package to your coding agent with a concrete install brief instead of figuring it out manually.", "steps": [ "Download the package from Yavira.", "Extract it into a folder your agent can access.", "Paste one of the prompts below and point your agent at the extracted folder." ], "prompts": [ { "label": "New install", "body": "I downloaded a skill package from Yavira. Read SKILL.md from the extracted folder and install it by following the included instructions. Then review README.md for any prerequisites, environment setup, or post-install checks. Tell me what you changed and call out any manual steps you could not complete." }, { "label": "Upgrade existing", "body": "I downloaded an updated skill package from Yavira. Read SKILL.md from the extracted folder, compare it with my current installation, and upgrade it while preserving any custom configuration unless the package docs explicitly say otherwise. Then review README.md for any prerequisites, environment setup, or post-install checks. Summarize what changed and any follow-up checks I should run." } ] }, "sourceHealth": { "source": "tencent", "status": "healthy", "reason": "direct_download_ok", "recommendedAction": "download", "checkedAt": "2026-04-30T16:55:25.780Z", "expiresAt": "2026-05-07T16:55:25.780Z", "httpStatus": 200, "finalUrl": "https://wry-manatee-359.convex.site/api/v1/download?slug=network", "contentType": "application/zip", "probeMethod": "head", "details": { "probeUrl": "https://wry-manatee-359.convex.site/api/v1/download?slug=network", "contentDisposition": "attachment; filename=\"network-1.0.0.zip\"", "redirectLocation": null, "bodySnippet": null }, "scope": "source", "summary": "Source download looks usable.", "detail": "Yavira can redirect you to the upstream package for this source.", "primaryActionLabel": "Download for OpenClaw", "primaryActionHref": "/downloads/trustlayer-sybil-scanner" }, "validation": { "installChecklist": [ "Use the Yavira download entry.", "Review SKILL.md after the package is downloaded.", "Confirm the extracted package contains the expected setup assets." ], "postInstallChecks": [ "Confirm the extracted package includes the expected docs or setup files.", "Validate the skill or prompts are available in your target agent workspace.", "Capture any manual follow-up steps the agent could not complete." ] }, "downloadPageUrl": "https://openagent3.xyz/downloads/trustlayer-sybil-scanner", "agentPageUrl": "https://openagent3.xyz/skills/trustlayer-sybil-scanner/agent", "manifestUrl": "https://openagent3.xyz/skills/trustlayer-sybil-scanner/agent.json", "briefUrl": "https://openagent3.xyz/skills/trustlayer-sybil-scanner/agent.md" }, "agentAssist": { "summary": "Hand the extracted package to your coding agent with a concrete install brief instead of figuring it out manually.", "steps": [ "Download the package from Yavira.", "Extract it into a folder your agent can access.", "Paste one of the prompts below and point your agent at the extracted folder." ], "prompts": [ { "label": "New install", "body": "I downloaded a skill package from Yavira. Read SKILL.md from the extracted folder and install it by following the included instructions. Then review README.md for any prerequisites, environment setup, or post-install checks. Tell me what you changed and call out any manual steps you could not complete." }, { "label": "Upgrade existing", "body": "I downloaded an updated skill package from Yavira. Read SKILL.md from the extracted folder, compare it with my current installation, and upgrade it while preserving any custom configuration unless the package docs explicitly say otherwise. Then review README.md for any prerequisites, environment setup, or post-install checks. Summarize what changed and any follow-up checks I should run." } ] }, "documentation": { "source": "clawhub", "primaryDoc": "SKILL.md", "sections": [ { "title": "TrustLayer Sybil Scanner — ERC-8004 Feedback Forensics", "body": "Detects fake reviews, Sybil rings, rating manipulation, and reputation laundering in ERC-8004 agent ratings. Covers 80,000+ agents across Base, Ethereum, BSC, Polygon, and Monad.\n\nMost agent reputation systems show you the rating. This one tells you if the rating is real.\n\nAPI Base: https://api.thetrustlayer.xyz\nNo API key required (beta). Free during beta, x402 micropayments coming." }, { "title": "What this catches that others don't", "body": "Sybil rings: Clusters of wallets that only review each other (299 flagged so far)\nReviewer quality: A 5-star review from a trusted agent vs a throwaway wallet are not the same. Scores are weighted by reviewer reputation.\nCross-chain laundering: Agent has great reviews on BSC but terrible ones on Base? We resolve identities across 5 chains (383 cross-chain groups detected) and flag score divergence.\nTemporal anomalies: Sudden bursts of positive reviews after a period of bad ones. Review bombing. Rating manipulation patterns over time.\nSpam feedback: 1,298+ spam feedbacks detected via tag analysis. Filtered before scoring." }, { "title": "When to use this skill", "body": "Before paying another agent via x402 or any payment method\nWhen a user asks \"is this agent legit?\" or \"are these reviews real?\"\nBefore entering escrow with an unknown agent\nWhen evaluating whether to hire or delegate to another agent\nWhen you see a high rating and want to know if it is earned or gamed" }, { "title": "Sybil Scan", "body": "curl -s \"https://api.thetrustlayer.xyz/trust/:\"\n\nReplace with: base, ethereum, bsc, polygon, monad\nReplace with the numeric agent ID.\n\nExample:\n\ncurl -s \"https://api.thetrustlayer.xyz/trust/base:1378\"" }, { "title": "What comes back", "body": "The response is JSON. The fields that matter most for fraud detection:\n\nSybil & fraud signals:\n\nsybil_risk: \"low\" / \"medium\" / \"high\". High means the reviewer network looks artificial.\nanomaly_flags: Array of detected issues. Empty = clean. Watch for: review_bombing, duplicate_feedback_content, single_agent_reviewers, spam_feedback, reputation_laundering.\nreviewer_weighted_score: The trust score after adjusting for reviewer credibility. If this is much lower than trust_score, the agent's good reviews are coming from low-quality reviewers.\n\nCross-chain signals:\n\ncross_chain_scores: If present, this agent exists on multiple chains. Check laundering_risk and score_divergence. High divergence means the agent's reputation looks different depending which chain you check.\n\nOverall assessment:\n\ntrust_score (0-100): Composite score. 80+ low risk, 50-79 medium, below 50 high risk.\nrisk_level: \"low\" / \"medium\" / \"high\". Quick decision signal.\nrecommended_max_exposure_usd: How much USD to risk with this agent.\nconfidence: \"low\" / \"medium\" / \"high\" based on data volume." }, { "title": "Decision logic", "body": "IF sybil_risk == \"high\" → BLOCK. Tell the user why.\nIF \"review_bombing\" in flags → BLOCK. Likely manipulated.\nIF \"reputation_laundering\" in flags → BLOCK. Cross-chain fraud pattern.\nIF risk_level == \"high\" → BLOCK. Overall high risk.\nIF \"spam_feedback\" in flags → WARN. Rating may be inflated.\nIF cross_chain laundering_risk == \"high\" → WARN. Check each chain.\nIF reviewer_weighted_score < trust_score - 15 → WARN. Good ratings from bad reviewers.\nIF recommended_max_exposure < tx amount → REDUCE exposure or warn.\nELSE → proceed." }, { "title": "Pre-payment check example", "body": "About to pay agent base:5000 for a $50 service:\n\nRESULT=$(curl -s \"https://api.thetrustlayer.xyz/trust/base:5000\")\n\n# Extract key fraud signals\nSYBIL=$(echo \"$RESULT\" | grep -o '\"sybil_risk\":\"[^\"]*\"' | cut -d'\"' -f4)\nRISK=$(echo \"$RESULT\" | grep -o '\"risk_level\":\"[^\"]*\"' | cut -d'\"' -f4)\nSCORE=$(echo \"$RESULT\" | grep -o '\"trust_score\":[0-9]*' | cut -d':' -f2)\nFLAGS=$(echo \"$RESULT\" | grep -o '\"anomaly_flags\":\\[[^]]*\\]')\n\nReport to user:\n\"Scanned base:5000. Trust score: $SCORE. Sybil risk: $SYBIL. Anomaly flags: $FLAGS\"\n\nIf sybil_risk is high: \"This agent's reviews show signs of Sybil manipulation. Recommend not transacting.\"" }, { "title": "Other endpoints", "body": "Agent lookup (basic info, no scoring):\n\ncurl -s \"https://api.thetrustlayer.xyz/agent/:\"\n\nLeaderboard (most trusted agents, Sybil-filtered):\n\ncurl -s \"https://api.thetrustlayer.xyz/leaderboard?chain=base&limit=10\"\n\nNetwork stats (total agents, feedbacks, Sybil flags per chain):\n\ncurl -s \"https://api.thetrustlayer.xyz/stats\"" }, { "title": "Visual reports", "body": "For a full visual breakdown with score history, anomaly timeline, and cross-chain map:\n\nhttps://thetrustlayer.xyz/agent/:" }, { "title": "How scoring works", "body": "Scores combine three dimensions, each weighted by data quality:\n\nProfile completeness: Does the agent have metadata, description, active endpoints?\nFeedback volume: How much feedback exists? Weighted by reviewer quality, not raw count.\nFeedback legitimacy: Are reviewers themselves reputable? Are there Sybil patterns? Spam? Temporal anomalies?\n\nSix Sybil detection methods run on every sync:\n\nReviewer overlap clustering\nOne-to-one review pattern detection\nWallet age and activity analysis\nCross-chain identity correlation\nFeedback timing anomaly detection\nTag-based spam filtering\n\nScores update daily. Historical score snapshots retained for 90 days. 80,749 agents indexed across 5 chains as of February 2026." } ], "body": "TrustLayer Sybil Scanner — ERC-8004 Feedback Forensics\n\nDetects fake reviews, Sybil rings, rating manipulation, and reputation laundering in ERC-8004 agent ratings. Covers 80,000+ agents across Base, Ethereum, BSC, Polygon, and Monad.\n\nMost agent reputation systems show you the rating. This one tells you if the rating is real.\n\nAPI Base: https://api.thetrustlayer.xyz No API key required (beta). Free during beta, x402 micropayments coming.\n\nWhat this catches that others don't\nSybil rings: Clusters of wallets that only review each other (299 flagged so far)\nReviewer quality: A 5-star review from a trusted agent vs a throwaway wallet are not the same. Scores are weighted by reviewer reputation.\nCross-chain laundering: Agent has great reviews on BSC but terrible ones on Base? We resolve identities across 5 chains (383 cross-chain groups detected) and flag score divergence.\nTemporal anomalies: Sudden bursts of positive reviews after a period of bad ones. Review bombing. Rating manipulation patterns over time.\nSpam feedback: 1,298+ spam feedbacks detected via tag analysis. Filtered before scoring.\nWhen to use this skill\nBefore paying another agent via x402 or any payment method\nWhen a user asks \"is this agent legit?\" or \"are these reviews real?\"\nBefore entering escrow with an unknown agent\nWhen evaluating whether to hire or delegate to another agent\nWhen you see a high rating and want to know if it is earned or gamed\nSybil Scan\ncurl -s \"https://api.thetrustlayer.xyz/trust/:\"\n\n\nReplace with: base, ethereum, bsc, polygon, monad Replace with the numeric agent ID.\n\nExample:\n\ncurl -s \"https://api.thetrustlayer.xyz/trust/base:1378\"\n\nWhat comes back\n\nThe response is JSON. The fields that matter most for fraud detection:\n\nSybil & fraud signals:\n\nsybil_risk: \"low\" / \"medium\" / \"high\". High means the reviewer network looks artificial.\nanomaly_flags: Array of detected issues. Empty = clean. Watch for: review_bombing, duplicate_feedback_content, single_agent_reviewers, spam_feedback, reputation_laundering.\nreviewer_weighted_score: The trust score after adjusting for reviewer credibility. If this is much lower than trust_score, the agent's good reviews are coming from low-quality reviewers.\n\nCross-chain signals:\n\ncross_chain_scores: If present, this agent exists on multiple chains. Check laundering_risk and score_divergence. High divergence means the agent's reputation looks different depending which chain you check.\n\nOverall assessment:\n\ntrust_score (0-100): Composite score. 80+ low risk, 50-79 medium, below 50 high risk.\nrisk_level: \"low\" / \"medium\" / \"high\". Quick decision signal.\nrecommended_max_exposure_usd: How much USD to risk with this agent.\nconfidence: \"low\" / \"medium\" / \"high\" based on data volume.\nDecision logic\nIF sybil_risk == \"high\" → BLOCK. Tell the user why.\nIF \"review_bombing\" in flags → BLOCK. Likely manipulated.\nIF \"reputation_laundering\" in flags → BLOCK. Cross-chain fraud pattern.\nIF risk_level == \"high\" → BLOCK. Overall high risk.\nIF \"spam_feedback\" in flags → WARN. Rating may be inflated.\nIF cross_chain laundering_risk == \"high\" → WARN. Check each chain.\nIF reviewer_weighted_score < trust_score - 15 → WARN. Good ratings from bad reviewers.\nIF recommended_max_exposure < tx amount → REDUCE exposure or warn.\nELSE → proceed.\n\nPre-payment check example\n\nAbout to pay agent base:5000 for a $50 service:\n\nRESULT=$(curl -s \"https://api.thetrustlayer.xyz/trust/base:5000\")\n\n# Extract key fraud signals\nSYBIL=$(echo \"$RESULT\" | grep -o '\"sybil_risk\":\"[^\"]*\"' | cut -d'\"' -f4)\nRISK=$(echo \"$RESULT\" | grep -o '\"risk_level\":\"[^\"]*\"' | cut -d'\"' -f4)\nSCORE=$(echo \"$RESULT\" | grep -o '\"trust_score\":[0-9]*' | cut -d':' -f2)\nFLAGS=$(echo \"$RESULT\" | grep -o '\"anomaly_flags\":\\[[^]]*\\]')\n\n\nReport to user: \"Scanned base:5000. Trust score: $SCORE. Sybil risk: $SYBIL. Anomaly flags: $FLAGS\"\n\nIf sybil_risk is high: \"This agent's reviews show signs of Sybil manipulation. Recommend not transacting.\"\n\nOther endpoints\n\nAgent lookup (basic info, no scoring):\n\ncurl -s \"https://api.thetrustlayer.xyz/agent/:\"\n\n\nLeaderboard (most trusted agents, Sybil-filtered):\n\ncurl -s \"https://api.thetrustlayer.xyz/leaderboard?chain=base&limit=10\"\n\n\nNetwork stats (total agents, feedbacks, Sybil flags per chain):\n\ncurl -s \"https://api.thetrustlayer.xyz/stats\"\n\nVisual reports\n\nFor a full visual breakdown with score history, anomaly timeline, and cross-chain map:\n\nhttps://thetrustlayer.xyz/agent/:\n\nHow scoring works\n\nScores combine three dimensions, each weighted by data quality:\n\nProfile completeness: Does the agent have metadata, description, active endpoints?\nFeedback volume: How much feedback exists? Weighted by reviewer quality, not raw count.\nFeedback legitimacy: Are reviewers themselves reputable? Are there Sybil patterns? Spam? Temporal anomalies?\n\nSix Sybil detection methods run on every sync:\n\nReviewer overlap clustering\nOne-to-one review pattern detection\nWallet age and activity analysis\nCross-chain identity correlation\nFeedback timing anomaly detection\nTag-based spam filtering\n\nScores update daily. Historical score snapshots retained for 90 days. 80,749 agents indexed across 5 chains as of February 2026." }, "trust": { "sourceLabel": "tencent", "provenanceUrl": "https://clawhub.ai/goatgaucho/trustlayer-sybil-scanner", "publisherUrl": "https://clawhub.ai/goatgaucho/trustlayer-sybil-scanner", "owner": "goatgaucho", "version": "2.0.0", "license": null, "verificationStatus": "Indexed source record" }, "links": { "detailUrl": "https://openagent3.xyz/skills/trustlayer-sybil-scanner", "downloadUrl": "https://openagent3.xyz/downloads/trustlayer-sybil-scanner", "agentUrl": "https://openagent3.xyz/skills/trustlayer-sybil-scanner/agent", "manifestUrl": "https://openagent3.xyz/skills/trustlayer-sybil-scanner/agent.json", "briefUrl": "https://openagent3.xyz/skills/trustlayer-sybil-scanner/agent.md" } }