← Back to Skills Marketplace
1304
Downloads
0
Stars
0
Active Installs
1
Versions
Install in OpenClaw
/install routstr-balance-management
Description
Manage Routstr balance by checking balance, creating Lightning invoices for top-up, and checking invoice payment status
Usage Guidance
This skill mostly does what it says, but it reads your ~/.openclaw/openclaw.json for routstr.baseUrl and apiKey even though the registry metadata doesn't declare that. Before installing: 1) Inspect ~/.openclaw/openclaw.json to confirm it contains only the Routstr fields needed and no other secrets you don't want read. 2) Review the bundled scripts (they're provided) — note create_invoice.sh sends "amount_sats" but uses an msats value (likely a bug); topup_cashu.sh sends the cashu token as a query parameter. 3) Ensure jq, curl, awk are available or run in an environment that has them. 4) Only use this skill if you trust the configured BASE_URL (the scripts will send your API key and tokens there). 5) If you need higher assurance, ask the author to: declare the required config path and primary credential in metadata, list required binaries, and fix the msats/amount naming bug. If you don’t trust the endpoint or prefer to be cautious, run these scripts manually in an isolated environment rather than granting autonomous agent access.
Capability Analysis
Type: OpenClaw Skill
Name: routstr-balance-management
Version: 1.0.0
The OpenClaw skill bundle is benign. It performs its stated purpose of managing Routstr API balance by checking balance, creating Lightning invoices, checking invoice status, and topping up with Cashu tokens. All scripts legitimately read API configuration from `~/.openclaw/openclaw.json` and interact with the configured `baseUrl` using `curl`. There is no evidence of data exfiltration to unauthorized endpoints, malicious execution, persistence mechanisms, or prompt injection attempts in `SKILL.md`.
Capability Assessment
Purpose & Capability
Name/description align with the scripts: they check balance, create invoices, check invoice status, and top up with Cashu. However, the skill bundle does not declare that it requires the user's OpenClaw config file or an API key: scripts read $HOME/.openclaw/openclaw.json for .models.providers.routstr.baseUrl and .apiKey but the registry metadata lists no required config paths or primary credential. That mismatch is unexplained and disproportionate to the metadata.
Instruction Scope
The SKILL.md and scripts instruct the agent to read $HOME/.openclaw/openclaw.json and then call the configured BASE_URL endpoints. Reading a user config file in the home directory is a scope expansion that was not declared; although the scripts extract only routstr.baseUrl and apiKey, the fact that an agent will read a home config file should be explicit. The create_invoice.sh also embeds the API key into the JSON payload and topup_cashu.sh places tokens in URL query parameters; both actions transmit secrets to the configured BASE_URL (expected for the described purpose, but the target URL is entirely user-controlled via config).
Install Mechanism
There is no install spec (instruction-only style), but the skill includes executable shell scripts in the bundle. The scripts assume common CLI tools (jq, curl, awk) are available but the metadata does not declare required binaries. That increases the chance of runtime errors and hides an implicit dependency list; risk is moderate because these are standard tools but should be declared.
Credentials
The skill uses an API key from the user's ~/.openclaw/openclaw.json but declares no required env vars or primary credential. Requesting access to a local config that may contain other secrets is more privileged than declared. This mismatch (using an undeclared credential source) is the main proportionality problem. Also note the scripts send the apiKey in request headers or payloads (expected for API calls) — you should ensure you trust the configured BASE_URL before giving the skill access to that file.
Persistence & Privilege
The skill does not request always:true and does not modify other skills or system-wide settings. It appears to run only when invoked and does not request elevated persistence.
How to Use
- Make sure OpenClaw is installed (local or Docker)
- Run the install command in chat:
/install routstr-balance-management - After installation, invoke the skill by name or use
/routstr-balance-management - Provide required inputs per the skill's parameter spec and get structured output
Version History
v1.0.0
Initial release of Routstr Balance Management skill.
- Check current Routstr API balance in sats and BTC
- Display usage statistics: total spent and total requests
- Create Lightning invoices for account top-up
- Check payment status of Lightning invoices
- Top up account balance using Cashu tokens
Metadata
Frequently Asked Questions
What is Routstr Skill?
Manage Routstr balance by checking balance, creating Lightning invoices for top-up, and checking invoice payment status. It is an AI Agent Skill for Claude Code / OpenClaw, with 1304 downloads so far.
How do I install Routstr Skill?
Run "/install routstr-balance-management" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.
Is Routstr Skill free?
Yes, Routstr Skill is completely free (open-source). You can download, install and use it at no cost.
Which platforms does Routstr Skill support?
Routstr Skill is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).
Who created Routstr Skill?
It is built and maintained by sh1ftred (@sh1ftred); the current version is v1.0.0.
More Skills