← Back to Skills Marketplace
x402 Paywall
by
strouddustinn-bot
· GitHub ↗
· v1.0.0
· MIT-0
62
Downloads
0
Stars
0
Active Installs
1
Versions
Install in OpenClaw
/install x402-paywall
Description
x402 payment layer for AI agents — charge USDC per skill call. Meta-skill that wraps any skill with per-call pricing and on-chain payment verification.
Usage Guidance
This skill implements an on‑chain paywall and mostly aligns with that purpose, but several red flags mean you should not install it blindly: 1) SKILL.md references a PaymentClient and automatic payment behavior that is missing from the code bundle—expect to implement or supply that yourself. 2) The payment verification is incomplete: the verifier posts to an RPC and currently treats a transaction as valid on a very loose basis (and falls back to accepting any 0x...66‑char string if the requests library is absent). This can allow fake/forged tx hashes to be considered valid in some environments. 3) The package metadata declares no environment variables, but the code uses ETHEREUM_RPC_URL and examples encourage using private keys—do not paste private keys into code or logs. 4) Default RPC URL construction uses nonstandard hostnames (e.g., mainnet.base.org) which are not standard public RPC providers; you should supply and verify a trusted RPC endpoint. 5) The repo contains two different Ledger implementations (duplicate code) and several small API mismatches (e.g., decorator wrapper signatures) — test thoroughly. Recommendations before installing: review the paywall.py and ledger.py code line‑by‑line, provide a trusted RPC provider via ETHEREUM_RPC_URL, never hardcode private keys (use a vault), add robust on‑chain log decoding instead of the current receipt check, and run the skill in a sandboxed environment with testnet funds until you confirm behavior. If you need, ask the publisher why PaymentClient is referenced but not included and request explicit docs for secure key management and RPC configuration.
Capability Analysis
Type: OpenClaw Skill
Name: x402-paywall
Version: 1.0.0
The skill bundle implements a payment layer (x402) that handles sensitive cryptocurrency private keys and on-chain transactions, which is a high-risk capability. Significant security vulnerabilities exist in 'src/paywall.py', specifically in the 'PaymentVerifier.verify' method, which contains a fallback that accepts any 66-character hex string as a valid payment if the 'requests' library is missing. Furthermore, the verification logic only checks for transaction success ('0x1') without validating the recipient or the amount, allowing any successful blockchain transaction to bypass the paywall. While these appear to be critical implementation flaws rather than intentional malware, the handling of private keys combined with weak verification logic poses a substantial risk.
Capability Tags
Capability Assessment
Purpose & Capability
Name/description match the code: it implements a Paywall, PaymentVerifier, and Ledger. However the SKILL.md advertises a PaymentClient for automatic payments that is not present in the shipped code. The README also claims "No API keys to manage" while the code expects an RPC endpoint (ETHEREUM_RPC_URL) if provided — a mismatch between claims and actual runtime needs.
Instruction Scope
SKILL.md instructs wrapping skills, returning HTTP 402, and client code using a private key. The instructions suggest using wallet private keys (example: wallet_private_key) but no secure client implementation is included. The runtime instructions and examples assume behavior (automatic payment client, robust on‑chain verification) that the provided code does not fully implement.
Install Mechanism
There is no external install step or remote download (instruction-only + bundled Python source). That keeps install risk low: nothing is fetched from an arbitrary URL. Code is included in the package, so review is required before running but there's no installer that pulls additional artifacts.
Credentials
The registry metadata declares no required environment variables, but the code reads ETHEREUM_RPC_URL (and builds default RPC URLs using suspicious host patterns like https://mainnet.{network}.org). SKILL.md examples reference private keys on the client side. Sensitive inputs (RPC endpoints, private keys) are relevant to functionality but are not declared in metadata and are handled in examples rather than with a clear, secure config pattern.
Persistence & Privilege
The skill writes a local SQLite DB (agent_economy.db) to persist payments/subscriptions. It does not request platform-wide privileges or set always:true. It does not appear to modify other skills or global agent config. Local file creation is expected for a ledger but users should be aware of data residency for payment records.
How to Use
- Make sure OpenClaw is installed (local or Docker)
- Run the install command in chat:
/install x402-paywall - After installation, invoke the skill by name or use
/x402-paywall - Provide required inputs per the skill's parameter spec and get structured output
Version History
v1.0.0
Initial release — x402 payment layer for AI agents with USDC per-call pricing, on-chain verification, and payment ledger
Metadata
Frequently Asked Questions
What is x402 Paywall?
x402 payment layer for AI agents — charge USDC per skill call. Meta-skill that wraps any skill with per-call pricing and on-chain payment verification. It is an AI Agent Skill for Claude Code / OpenClaw, with 62 downloads so far.
How do I install x402 Paywall?
Run "/install x402-paywall" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.
Is x402 Paywall free?
Yes, x402 Paywall is completely free, licensed under MIT-0. You can download, install and use it at no cost.
Which platforms does x402 Paywall support?
x402 Paywall is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).
Who created x402 Paywall?
It is built and maintained by strouddustinn-bot (@strouddustinn-bot); the current version is v1.0.0.
More Skills