← Back to Skills Marketplace
微信支付商品券接入skill
by
zhangpeng319
· GitHub ↗
· v1.0.2
· MIT-0
194
Downloads
1
Stars
0
Active Installs
3
Versions
Install in OpenClaw
/install wechatpay-product-coupon
Description
微信支付商品券接入助手,提供券类型选型、API代码示例(Java/Go)、开发参数校验、接口报错排查和上线质量检查。Use when user mentions "商品券", "优惠券接入", "发券", "核销", "创建商品券", "商品券代码", "签名报错", "验签失败", "回调收不到", "Requ...
Usage Guidance
This skill appears to do exactly what it claims: provide docs and Java/Go example code for WeChat product-coupon integration. Before installing or using it, consider the following: (1) Do not paste private keys, apiclient_key.pem contents, APIv3 keys, or actual certificate serial numbers into chat—example files intentionally show placeholder paths. (2) If you allow the skill to perform the optional 'project code scan', grant it file access only after confirming which directories/files it may read and never share secret key files; prefer uploading a sanitized copy or running scans locally. (3) Treat the bundled code as examples—verify against official WeChat Pay docs and your security policies before copying into production. (4) If you need the skill to modify your repository or write files, avoid doing so: SKILL.md explicitly forbids writing into user projects. (5) If you want extra assurance, review the bundled SDK utility files (signing/verify code) locally to confirm they match official implementations and that no hard-coded secrets or external endpoints appear.
Capability Analysis
Type: OpenClaw Skill
Name: wechatpay-product-coupon
Version: 1.0.2
The skill bundle is a comprehensive integration assistant for WeChat Pay product coupons. It contains standard API implementation examples in Java and Go, along with diagnostic Python scripts (e.g., 'scripts/查询用户商品券详情_品牌.py') for troubleshooting user coupon states. The instructions in 'SKILL.md' are highly restrictive and follow security best practices by enforcing a multi-step confirmation protocol and explicitly forbidding the agent from writing to files or generating code outside of provided references. No evidence of data exfiltration, malicious execution, or harmful prompt injection was found; all network activity is directed at official WeChat Pay endpoints (api.mch.weixin.qq.com).
Capability Tags
Capability Assessment
Purpose & Capability
The skill name/description match the packaged content: integration guides, signing/verification rules, troubleshooting, and numerous Java/Go example files for both brand and partner (service provider) modes. There are no unrelated required env vars or binaries declared. References to API endpoints, signing schemes, and file-path placeholders (e.g., private key /apiclient_key.pem) are expected and appropriate for a payment SDK integration helper.
Instruction Scope
SKILL.md tightly constrains behavior: it mandates asking the user before collecting info, forbids generating new API code from scratch, forbids writing code into the user's project, and requires language/mode confirmation before showing examples. One capability—'接入质量扫描' (project code scanning)—would require reading the user's project files and possibly scanning for signing/handler logic; SKILL.md requires explicit user consent before doing that. This is reasonable, but if you allow the skill to run scans, be aware it needs file access and may request to read code (do not provide private keys).
Install Mechanism
No install spec is present (instruction-only skill with bundled example files). No remote downloads or archive extraction occur. All code and docs are included in the skill bundle. Bundling many example files is heavy but consistent with the stated purpose.
Credentials
The skill declares no required environment variables, no primary credential, and no config path access. Example code shows placeholders for merchant cert paths, APIv3 keys, and public key IDs — these are normal for payment SDK examples but should not be provided to the skill or pasted into chat. The skill does not request unrelated credentials (e.g., AWS keys) and the number of required secrets is zero.
Persistence & Privilege
always:false (no forced inclusion) and model-invocation is allowed (default). The skill does not request elevated platform privileges, nor does it declare actions that would modify other skills or global agent settings.
How to Use
- Make sure OpenClaw is installed (local or Docker)
- Run the install command in chat:
/install wechatpay-product-coupon - After installation, invoke the skill by name or use
/wechatpay-product-coupon - Provide required inputs per the skill's parameter spec and get structured output
Version History
v1.0.2
更新图片引用为md格式
v1.0.1
- 文档末尾新增“社区与反馈”区块,提供官方交流群二维码和社区交流说明。
- 其余核心能力、全局交互规范和技能能力内容未作调整。
v1.0.0
v1.0.0 初始版本,支持微信支付商品券接入指引,包含券类型选型、Java/Go 示例代码、业务知识速查、接入质量评估和接口排障。
Metadata
Frequently Asked Questions
What is 微信支付商品券接入skill?
微信支付商品券接入助手,提供券类型选型、API代码示例(Java/Go)、开发参数校验、接口报错排查和上线质量检查。Use when user mentions "商品券", "优惠券接入", "发券", "核销", "创建商品券", "商品券代码", "签名报错", "验签失败", "回调收不到", "Requ... It is an AI Agent Skill for Claude Code / OpenClaw, with 194 downloads so far.
How do I install 微信支付商品券接入skill?
Run "/install wechatpay-product-coupon" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.
Is 微信支付商品券接入skill free?
Yes, 微信支付商品券接入skill is completely free, licensed under MIT-0. You can download, install and use it at no cost.
Which platforms does 微信支付商品券接入skill support?
微信支付商品券接入skill is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).
Who created 微信支付商品券接入skill?
It is built and maintained by zhangpeng319 (@zhangpeng319); the current version is v1.0.2.
More Skills