← Back to Skills Marketplace
772
Downloads
2
Stars
1
Active Installs
1
Versions
Install in OpenClaw
/install xmd
Description
Interact with Metal Dollar (XMD) stablecoin to mint, redeem, check supply, collateral reserves, and oracle prices with zero fees and multi-collateral support.
Usage Guidance
This skill provides read-only analytics and also supports mint/redeem operations that require signing with your XPR private key. Before installing or enabling write actions: 1) Treat XPR_PRIVATE_KEY as extremely sensitive — only supply it if you fully trust the skill and its author. 2) Ask the maintainer to update skill.json and SKILL.md to explicitly list required env vars (XPR_PRIVATE_KEY, XPR_ACCOUNT, XPR_PERMISSION) and describe when they are used. 3) If you only need read-only data, avoid supplying any private key and use the read tools; consider running the included test-read.mjs in an isolated environment to verify read-only behavior. 4) Prefer using a separate account or a key with limited permissions (if possible) for signing, and review the code locally to confirm there are no unexpected network endpoints or exfiltration logic. 5) If you cannot confirm the origin/trustworthiness of the owner (owner id: kn7fkc3h30sk93cx039q57pqj5812pkc, source unknown), avoid providing credentials and treat the skill as untrusted for write operations.
Capability Analysis
Type: OpenClaw Skill
Name: xmd
Version: 0.2.11
The skill is classified as suspicious due to a critical discrepancy in its manifest. While the `src/index.ts` code explicitly requires `process.env.XPR_PRIVATE_KEY` and `process.env.XPR_ACCOUNT` for its 'write' operations (`xmd_mint`, `xmd_redeem`), the `skill.json` file declares `"requires": { "env": [] }`. This omission in `skill.json` represents a vulnerability, as it misinforms an agent operator about the sensitive environment variables the skill will attempt to access, potentially leading to accidental exposure or misconfiguration. The code itself performs legitimate blockchain interactions with hardcoded, known contract addresses and does not exhibit other malicious behaviors like data exfiltration to unauthorized endpoints, arbitrary code execution, or persistence mechanisms.
Capability Assessment
Purpose & Capability
The skill implements read-only RPC helpers and write tools that sign transactions using a user's XPR private key — this capability matches the described mint/redeem functionality. However, the skill.json manifest declares no required env vars (requires.env is empty) while src/index.ts clearly expects XPR_PRIVATE_KEY, XPR_ACCOUNT, and XPR_PERMISSION. The absence of declared credentials in the manifest is inconsistent and surprising for users.
Instruction Scope
SKILL.md documents read-only tools and notes that write tools require confirmation, but it does not document the need to provide a private key/account via environment variables. The code reads process.env.XPR_PRIVATE_KEY and process.env.XPR_ACCOUNT directly for signing; this access to sensitive secrets is not described in the runtime instructions, which is scope mismatch and a user-notice problem.
Install Mechanism
There is no install spec (instruction-only), which reduces install risk. The runtime code dynamically imports '@proton/js' for signing — a legitimate dependency for EOS/Proton-style transaction signing — but no dependency/install information is declared in the manifest. This may cause runtime failures or hidden dependency pulls if the environment attempts to install packages automatically.
Credentials
The code requires highly sensitive environment variables (XPR_PRIVATE_KEY and XPR_ACCOUNT) for write operations. That is proportionate to the claimed write capability (signing on-chain), but the skill fails to declare these requirements in skill.json and SKILL.md. Not declaring sensitive credentials is a serious transparency issue: a user could unintentionally provide a key without realizing which skill will use it, or fail to realize the risk of granting signing capability.
Persistence & Privilege
The skill is not force-included (always: false) and does not attempt to modify other skills or system-wide settings. Autonomous invocation is enabled by default (disable-model-invocation: false) but this is normal; no elevated permanence or cross-skill modifications are present.
How to Use
- Make sure OpenClaw is installed (local or Docker)
- Run the install command in chat:
/install xmd - After installation, invoke the skill by name or use
/xmd - Provide required inputs per the skill's parameter spec and get structured output
Version History
v0.2.11
xmd 0.2.11
- Added detailed SKILL.md documentation for Metal Dollar (XMD) stablecoin.
- Clarified minting and redemption processes, including memos and supported collateral.
- Listed all supported collateral types with respective parameters.
- Described associated contracts and read/write tool functions.
- Included current safety rules and operational checks for users.
Metadata
Frequently Asked Questions
What is xpr-xmd?
Interact with Metal Dollar (XMD) stablecoin to mint, redeem, check supply, collateral reserves, and oracle prices with zero fees and multi-collateral support. It is an AI Agent Skill for Claude Code / OpenClaw, with 772 downloads so far.
How do I install xpr-xmd?
Run "/install xmd" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.
Is xpr-xmd free?
Yes, xpr-xmd is completely free (open-source). You can download, install and use it at no cost.
Which platforms does xpr-xmd support?
xpr-xmd is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).
Who created xpr-xmd?
It is built and maintained by paulgnz (@paulgnz); the current version is v0.2.11.
More Skills