← Back to Skills Marketplace
2031
Downloads
1
Stars
0
Active Installs
3
Versions
Install in OpenClaw
/install monzo
Description
Access Monzo bank account - check balance, view transactions, manage pots, send feed notifications. For personal finance queries and banking automation.
Usage Guidance
This skill appears coherent for connecting OpenClaw to Monzo. Things to consider before installing:
- Protect MONZO_KEYRING_PASSWORD: prefer injecting it via a secrets manager or environment at runtime, not by putting it in openclaw.json in plaintext. If you must store it in a file, restrict permissions (chmod 600) and avoid committing to version control.
- Credentials on disk: OAuth client secret, access and refresh tokens are encrypted with AES-256-CBC (PBKDF2 100k) and saved under ~/.openclaw/credentials/monzo.json. If an attacker gains OS-level access (root, malware, keylogger), credentials can be compromised — follow the README's advice to revoke the OAuth client immediately in that case.
- Webhooks: only register URLs you control and use HTTPS. An attacker-controlled webhook URL would receive transaction notifications.
- Non-interactive/automation: the setup script supports providing client secrets and auth codes on the command line — avoid putting secrets in shell history or logs; prefer non-logged secret injection.
- Review the bundled scripts yourself (they are included) or run them in a controlled environment first.
If you follow the guidance above (use secrets manager, restrict file permissions, run on machines you control, and review webhook endpoints), the skill is coherent with its stated purpose and can be used safely for Monzo automation.
Capability Analysis
Type: OpenClaw Skill
Name: monzo
Version: 1.0.2
The OpenClaw Monzo skill is well-documented and transparent, adhering to good security practices. Credentials are encrypted at rest using AES-256-CBC with PBKDF2, and the setup process includes OAuth state validation to prevent CSRF. The documentation (`SKILL.md`, `README.md`, `SECURITY.md`) explicitly details the threat model, warns about the `MONZO_KEYRING_PASSWORD` being visible in process environments on multi-user systems, and advises caution with webhook URLs. All code aligns with the stated purpose of Monzo banking operations, without any evidence of intentional data exfiltration to unauthorized endpoints, malicious execution, persistence mechanisms, or prompt injection attempts against the agent.
Capability Assessment
Purpose & Capability
Name/description (Monzo banking) match what the code does: OAuth setup, balance/transactions/pots/feed/receipts/webhooks via the Monzo API. Required binaries (curl, jq, openssl, bc) are plausible for the CLI scripts, and the single required env var (MONZO_KEYRING_PASSWORD) is used to encrypt credentials stored under ~/.openclaw/credentials/monzo.json.
Instruction Scope
SKILL.md and scripts confine operations to the Monzo API and local credential storage. The setup wizard accepts client id/secret and authorization codes and then stores them (encrypted). Minor notes: the docs suggest multiple ways to provide MONZO_KEYRING_PASSWORD including placing it directly in openclaw.json (plaintext) — the skill warns about the risks but this represents a higher-risk deployment option. The scripts also reference optional env vars (OPENCLAW_CREDENTIALS_DIR, MONZO_API_BASE) that are not declared in requires.env — these are benign but worth knowing.
Install Mechanism
No install spec — the package is instruction/code-only and doesn't download arbitrary binaries. Code files are bundled with the skill; nothing in the manifest indicates fetching code from external, untrusted URLs or executing installers. This is lower risk than remote-installing arbitrary artifacts.
Credentials
The skill only requires a single secret-like env var (MONZO_KEYRING_PASSWORD) which is appropriate: it's used to derive the AES key for encrypting the saved OAuth client secret and tokens. However, the SKILL.md recommends (option A) placing the password directly in OpenClaw config (plaintext) which increases exposure, and the documentation correctly warns about process listing and multi-user systems. The scripts also accept non-declared environment variables (OPENCLAW_CREDENTIALS_DIR, MONZO_API_BASE) as optional overrides — this is reasonable but worth documenting to users.
Persistence & Privilege
always:false (not force-enabled). The skill stores encrypted credentials under the user's home directory (owner-only perms), which is expected for this functionality. It does not request or modify other skills' configs or system-wide settings. The agent-autonomous-invocation default is enabled (normal) but not combined with any unusual privileges.
How to Use
- Make sure OpenClaw is installed (local or Docker)
- Run the install command in chat:
/install monzo - After installation, invoke the skill by name or use
/monzo - Provide required inputs per the skill's parameter spec and get structured output
Version History
v1.0.2
Updated to address some of the automated security concerns. Hopefully this one makes the robots happier.
v1.0.1
- Pagination fixes for transaction history
- Expanded agent usage instructions for transaction history to clarify results are paginated and sorted newest first.
- Updated transaction query examples to highlight full transaction retrieval and clarify relative date filters.
- Improved script documentation consistency for agent prompts and usage patterns.
- No functional changes; documentation and usage clarification only.
v1.0.0
Monzo Skill 1.0.0 - Initial Release
- Access your Monzo bank account to check balances, view transactions, manage savings pots, and send feed notifications.
- Step-by-step setup instructions provided for secure integration with Clawdbot using OAuth credentials and encrypted keyring password.
- Includes command line scripts for common banking actions: view balance, list transactions, manage pots, send notifications, and more.
- Supports personal, joint, and business Monzo accounts; provides detailed agent usage guidance and troubleshooting tips.
- Money amounts are handled in pence; clear guidance for agents on handling outputs and errors.
Metadata
Frequently Asked Questions
What is Monzo?
Access Monzo bank account - check balance, view transactions, manage pots, send feed notifications. For personal finance queries and banking automation. It is an AI Agent Skill for Claude Code / OpenClaw, with 2031 downloads so far.
How do I install Monzo?
Run "/install monzo" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.
Is Monzo free?
Yes, Monzo is completely free (open-source). You can download, install and use it at no cost.
Which platforms does Monzo support?
Monzo is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).
Who created Monzo?
It is built and maintained by Rob (@rhesketh); the current version is v1.0.2.
More Skills