← Back to Skills Marketplace
k66inthesky

Sui Sec

by k66 (Lana Chen) · GitHub ↗ · v1.0.1
cross-platform ⚠ suspicious
1117
Downloads
2
Stars
0
Active Installs
2
Versions
Install in OpenClaw
/install suisec
Description
Sui Secure - Pre-simulate transactions via sui client call --dry-run and sui client ptb --dry-run, compare results against user intent to detect malicious contract behavior. Only execute if intent matches; block otherwise.
Usage Guidance
This tool is generally coherent with its stated purpose, but do not install or wire it into an automated signing/execution pipeline without manual safeguards. Specific actions you should take before using it: - Verify the correct CLI usage: main.py expects three args in this order: '<ptb_command>' <intended_cost> <owner_address>. Fix SKILL.md or adapt your wrapper so the script is invoked correctly. - Ensure the agent always prompts the human for the owner address and explicit confirmation before removing '--dry-run' and executing any real transaction. - Review and augment the audit logic (objectChanges parsing and edge cases) — current detection is simplistic and may miss sophisticated attacks. - Test on harmless transactions (local/devnet) to confirm outputs and failure modes. - Prefer manual human review on any BLOCKING or ambiguous results; do not rely solely on automated 'SAFE TO SIGN' messaging. If you want higher assurance, request an updated skill that corrects the usage examples, documents the expected arguments clearly, and expands detection coverage for object ownership changes and multi-hop/proxy calls.
Capability Analysis
Type: OpenClaw Skill Name: suisec Version: 1.0.1 The skill is classified as suspicious due to a potential prompt injection vulnerability against the AI agent and an incomplete security feature. The `SKILL.md` instructs the agent to construct and modify `sui client` commands based on user input (e.g., removing `--dry-run` for final execution), which could be exploited if the agent's parsing logic is not robust. Additionally, the `main.py` script's 'HIJACK' detection logic is noted as incomplete, potentially leading to a false sense of security. While `main.py` itself uses `shlex.split` and `subprocess.run(..., shell=False)` to prevent shell injection within the Python script, the agent's interaction with the skill's instructions and user input presents a vulnerability.
Capability Assessment
Purpose & Capability
Name/description, required binaries (sui, python3) and the brew install for the sui CLI are coherent with a pre-simulation auditor for Sui transactions. However, some examples in SKILL.md (invocation forms) do not match main.py's expected arguments (main.py requires: '<ptb_command>' <intended_cost> <owner_address>), which is an inconsistency between the declared usage and actual code.
Instruction Scope
SKILL.md instructs agents to always dry-run and to only execute real transactions when the audit passes. The Python code does perform a dry-run and exits non-zero on problems, but SKILL.md examples and the example invocation ordering are inconsistent with how main.py parses args. The SKILL.md sometimes suggests automated removal of '--dry-run' and executing the real transaction — that would be an agent-level action outside the script and is potentially dangerous if not gated by explicit, well-documented human confirmation. The audit logic in main.py is simplistic (only basic balanceChanges inspection and a placeholder for objectChanges) and may miss complex attacks; the instructions offer manual fallback checks which are appropriate but the automation claims may give false assurance.
Install Mechanism
Install uses Homebrew to provide the 'sui' binary (a common distribution method). There are no downloads from untrusted URLs, no extract/install of arbitrary archives, and the included setup.sh only checks for the sui binary. Low install risk.
Credentials
The skill requests no environment variables or secrets and the code does not access them. However, calling the local 'sui' CLI will necessarily interact with the user's local Sui configuration and wallets (local keys), so users should be aware the tool inspects simulated outputs derived from their configured account. The skill does not require unrelated credentials.
Persistence & Privilege
The skill is not marked always:true and does not modify system or other-skill configuration. main.py does not write persistent data or install services. Agent autonomous invocation is allowed by default (disable-model-invocation is false) but that is the platform default and not by itself a red flag here.
How to Use
  1. Make sure OpenClaw is installed (local or Docker)
  2. Run the install command in chat: /install suisec
  3. After installation, invoke the skill by name or use /suisec
  4. Provide required inputs per the skill's parameter spec and get structured output
Version History
v1.0.1
- No code or documentation changes in this release. - Version bump only; content and behavior remain the same as previous version.
v1.0.0
Initial release of Sui Secure (suisec) transaction guard for Sui. - Adds comprehensive protocol for simulating transactions via `sui client call --dry-run` and `sui client ptb --dry-run` - Collects and verifies user transaction intent against dry-run results to detect malicious contract behavior - Integrates an automated auditing script (`main.py`) for `sui client ptb` commands, enforcing outcome-based allow/block rules - Blocks suspicious transactions and requires explicit user override on threat detection, presenting clear, itemized risk summaries - Manual analysis and comparison workflow defined for commands not yet supported by the auditor - Enforces strict, always-dry-run, intent-matching execution policy for Sui transactions
Metadata
Slug suisec
Version 1.0.1
License
All-time Installs 0
Active Installs 0
Total Versions 2
Frequently Asked Questions

What is Sui Sec?

Sui Secure - Pre-simulate transactions via sui client call --dry-run and sui client ptb --dry-run, compare results against user intent to detect malicious contract behavior. Only execute if intent matches; block otherwise. It is an AI Agent Skill for Claude Code / OpenClaw, with 1117 downloads so far.

How do I install Sui Sec?

Run "/install suisec" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.

Is Sui Sec free?

Yes, Sui Sec is completely free (open-source). You can download, install and use it at no cost.

Which platforms does Sui Sec support?

Sui Sec is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).

Who created Sui Sec?

It is built and maintained by k66 (Lana Chen) (@k66inthesky); the current version is v1.0.1.

More Skills
self-improving agent
Captures learnings, errors, and corrections to enable continuous improvement. Use when: (1) A command or operation fails unexpectedly, (2) User corrects Clau...
⬇ 463283 · by pskoett
Skill Vetter
Security-first skill vetting for AI agents. Use before installing any skill from ClawdHub, GitHub, or other sources. Checks for red flags, permission scope, and suspicious patterns.
⬇ 259410 · by spclaudehome
Polymarket
Query Polymarket prediction markets. Check odds, find trending markets, search events, track price movements.
⬇ 232503 · by joelchance
Self-Improving + Proactive Agent
Self-reflection + Self-criticism + Self-learning + Self-organizing memory. Agent evaluates its own work, catches mistakes, and improves permanently. Use when...
⬇ 200423 · by ivangdavila
Github
Interact with GitHub using the `gh` CLI. Use `gh issue`, `gh pr`, `gh run`, and `gh api` for issues, PRs, CI runs, and advanced queries.
⬇ 191115 · by steipete
ontology
Typed knowledge graph for structured agent memory and composable skills. Use when creating/querying entities (Person, Project, Task, Event, Document), linkin...
⬇ 190156 · by oswalpalash

💬 Comments