← Back to Skills Marketplace
294
Downloads
0
Stars
0
Active Installs
1
Versions
Install in OpenClaw
/install venus-agent-skills
Description
Analyze Venus Protocol lending/borrowing positions on BNB Chain with risk-first guidance. Use when users ask about Venus markets, collateral/borrow decisions...
Usage Guidance
This package appears to do what it claims: market reads, on‑chain wallet exposure checks, conservative risk scoring, and optional transaction helpers. Important things to consider before installing or running: 1) Default mode is simulate/read-only — always run simulate/preview first. 2) Broadcast actions require you to supply a private key and --confirm YES; avoid passing private keys on the command line (they can appear in process lists and shell history). Prefer using a secure signer (hardware wallet, ephemeral node signer) or a protected key file. 3) Verify RPC and API endpoints before use (defaults are public BNB dataseed and api.venus.io); do not point the scripts to an untrusted RPC or API. 4) Review/verify contract addresses in references (pool-filter.json and references JSON) against official sources. 5) If you intend to let an agent invoke this autonomously, restrict that capability or require explicit human confirmation for any broadcast step. If you want a deeper check, request an audit of the transaction broadcast code paths (node scripts that call wallet.signer) and of wallet_onchain_exposure.py to confirm no unexpected network calls or data exfiltration.
Capability Analysis
Type: OpenClaw Skill
Name: venus-agent-skills
Version: 1.0.0
The skill bundle is designed for risk-aware analysis and operations on Venus Protocol and Flux. It includes clear guardrails in `SKILL.md` and the scripts, such as defaulting to 'simulate' mode, requiring explicit '--confirm YES' and '--private-key' for 'broadcast' transactions, and implementing health factor safety checks (e.g., in `scripts/venus_withdraw.js`). While scripts use `subprocess.check_output` (Python) and `execFileSync` (Node.js) to call other scripts, arguments are passed as lists, which is the standard and generally safe method to prevent shell injection. There is no evidence of intentional data exfiltration, unauthorized persistence, obfuscation, or malicious prompt injection attempts against the agent.
Capability Assessment
Purpose & Capability
The name/description (Venus Protocol risk-first analysis on BNB Chain) matches the included scripts and references: market fetchers, wallet on‑chain readers, health simulators, and explicit deposit/withdraw/borrow/collateral execution helpers. The presence of both analysis (read-only) and execution (broadcast) scripts is documented in SKILL.md and the code; this is coherent with the stated purpose of providing both risk checks and execution planning.
Instruction Scope
SKILL.md confines runtime behavior to the listed scripts, uses official Venus API and BNB RPC endpoints by default, and requires explicit confirmation for broadcast transactions. This stays within the stated scope. Note: execution-capable scripts accept a private key and can sign/broadcast transactions when run with --mode broadcast and --confirm YES — the skill warns about this, but users should treat broadcast capability as sensitive and follow the guardrails (simulate first, explicit confirm).
Install Mechanism
Instruction-only skill with no install spec; included scripts are plain Python/Node files. Nothing is downloaded from arbitrary URLs during install. No archive/extract installs or remote installers were found in the manifest.
Credentials
The skill requests no environment variables or built-in credentials, which is proportionate. However, multiple scripts accept a raw private key via CLI arguments to perform broadcasts. Passing private keys on CLI can leak to process listings and shell history; while this pattern matches typical CLI crypto tooling, it is a sensitive design choice the user should treat carefully (prefer ephemeral signers, hardware wallets, or protected key files).
Persistence & Privilege
The skill does not request persistent or privileged platform flags (always:false). It does not attempt to modify other skills or global agent settings. Autonomous invocation is allowed by default but is not combined with other high-risk factors here.
How to Use
- Make sure OpenClaw is installed (local or Docker)
- Run the install command in chat:
/install venus-agent-skills - After installation, invoke the skill by name or use
/venus-agent-skills - Provide required inputs per the skill's parameter spec and get structured output
Version History
v1.0.0
Initial public release: Venus Core + Flux
Metadata
Frequently Asked Questions
What is Venus Agent Skills?
Analyze Venus Protocol lending/borrowing positions on BNB Chain with risk-first guidance. Use when users ask about Venus markets, collateral/borrow decisions... It is an AI Agent Skill for Claude Code / OpenClaw, with 294 downloads so far.
How do I install Venus Agent Skills?
Run "/install venus-agent-skills" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.
Is Venus Agent Skills free?
Yes, Venus Agent Skills is completely free (open-source). You can download, install and use it at no cost.
Which platforms does Venus Agent Skills support?
Venus Agent Skills is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).
Who created Venus Agent Skills?
It is built and maintained by zed-venus (@zed-venus); the current version is v1.0.0.
More Skills