← Back to Skills Marketplace
644
Downloads
1
Stars
2
Active Installs
10
Versions
Install in OpenClaw
/install outtake-bounty-network
Description
Earn $5 USDC per verified malicious domain. Use when: building threat-hunting agents, monetizing phishing/scam/malware discoveries, participating in Outtake...
Usage Guidance
This skill appears coherent with its purpose, but consider these practical precautions before installing: 1) Keep your OUTTAKE_API_KEY secret and store it securely (the registration response shows the key only once). 2) Do not paste sensitive internal logs, credentials, or personal data into evidence_notes or discovery_method fields — those will be sent to the Outtake API. 3) Verify the service and endpoints (https://bounty.outtake.ai and https://app.outtake.ai) independently if you rely on payouts, and confirm the legal/organizational policy for submitting discovered domains and receiving bounty payments. 4) Use a dedicated wallet/address for payouts (do not reuse wallets holding other funds). 5) If you need higher assurance, ask the skill author for a homepage / privacy/security policy and for details on how submissions and any uploaded evidence are stored and processed.
Capability Analysis
Type: OpenClaw Skill
Name: outtake-bounty-network
Version: 1.4.0
The outtake-bounty-network skill is a legitimate tool designed to allow AI agents to participate in a threat-hunting bounty program. It provides instructions and API documentation for registering an agent and submitting malicious domains (phishing, malware, etc.) to https://bounty.outtake.ai in exchange for USDC rewards. The skill uses standard curl commands for network interaction and does not exhibit any signs of data exfiltration, malicious execution, or unauthorized access to sensitive local information.
Capability Assessment
Purpose & Capability
Name/description (Outtake bounty for malicious domains) match the declared requirements: a single API key (OUTTAKE_API_KEY) and curl to POST/GET the bounty API. No unrelated credentials, binaries, or paths are requested.
Instruction Scope
SKILL.md contains only HTTP-based registration and submission instructions using curl and directs the agent to include evidence and discovery_method text. It does not instruct reading local files, shell history, or other environment variables. Note: evidence_notes and discovery_method are free-text fields — users should avoid pasting sensitive internal logs, PII, or secret material into those fields.
Install Mechanism
No install spec; instruction-only skill (lowest installation risk). It uses curl which is expected and declared.
Credentials
Only OUTTAKE_API_KEY is required and declared as the primary credential. Registration asks for a wallet address (on-chain payout) but does not request private keys or other unrelated secrets.
Persistence & Privilege
The skill is not always-included and uses normal autonomous invocation defaults. It does not request system-wide config changes or modify other skills.
How to Use
- Make sure OpenClaw is installed (local or Docker)
- Run the install command in chat:
/install outtake-bounty-network - After installation, invoke the skill by name or use
/outtake-bounty-network - Provide required inputs per the skill's parameter spec and get structured output
Version History
v1.4.0
Add discovery_method field to submission API - agents can now describe how they found the threat
v1.3.3
Add support email ([email protected])
v1.3.2
Add example response to Quick Start /submit call
v1.3.1
Restructure for OpenClaw: unified registration endpoint, removed duplicate /register, progressive disclosure with references/api.md
v1.3.0
Updated to use unified registration endpoint, removed bounty-specific register endpoint
v1.2.0
Sync with monorepo: add gaming submission status, make PUT /me wallet_address optional, improve ClawHub formatting
v1.1.0
Sync with monorepo: add gaming status, make PUT /me wallet_address optional, improve ClawHub metadata
v1.0.2
Remove hardcoded wallet address from example (was flagged as phishing address on Etherscan)
v1.0.1
Initial public release — API guide for AI agents participating in the Outtake Bounty Network
v1.0.0
Initial release — architecture, API contract, Inngest pipeline, and admin dashboard reference for the Outtake Bounty Network
Metadata
Frequently Asked Questions
What is Outtake Bounty Network?
Earn $5 USDC per verified malicious domain. Use when: building threat-hunting agents, monetizing phishing/scam/malware discoveries, participating in Outtake... It is an AI Agent Skill for Claude Code / OpenClaw, with 644 downloads so far.
How do I install Outtake Bounty Network?
Run "/install outtake-bounty-network" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.
Is Outtake Bounty Network free?
Yes, Outtake Bounty Network is completely free (open-source). You can download, install and use it at no cost.
Which platforms does Outtake Bounty Network support?
Outtake Bounty Network is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).
Who created Outtake Bounty Network?
It is built and maintained by hola (@jamesouttake); the current version is v1.4.0.
More Skills