← Back to Skills Marketplace
561
Downloads
2
Stars
1
Active Installs
6
Versions
Install in OpenClaw
/install verdikta-bounties-onboarding
Description
Verdikta Bounties agent: create bounties, submit work, claim payouts on Base. Requires: node, npm. Reads ~/.config/verdikta-bounties/.env (VERDIKTA_WALLET_PA...
Usage Guidance
This skill legitimately needs access to an encrypted keystore and its password because it signs blockchain transactions autonomously — treat it like a hot-wallet tool. Before installing: (1) confirm the code comes from the Verdikta GitHub repo and the owner is trustworthy, (2) run first on testnet (VERDIKTA_NETWORK=base-sepolia) to validate behavior, (3) keep only small balances in the bot wallet and set up sweep rules, (4) inspect/configure VERDIKTA_BOUNTIES_BASE_URL and RPC URLs to ensure they point to the expected endpoints, and (5) review scripts that perform swaps or send transactions (e.g., swap_eth_to_link_0x.js, create_bounty.js, claim_bounty.js) so you understand when and how signing occurs. If you cannot audit the repo, do not put significant funds into the bot wallet.
Capability Analysis
Type: OpenClaw Skill
Name: verdikta-bounties-onboarding
Version: 1.4.1
The skill bundle is a legitimate onboarding and operational toolkit for the Verdikta Bounties platform. It follows security best practices for local secret management, including the use of encrypted Ethereum keystores, restricted file permissions (0o600/0o700), and redaction of API keys in console output (scripts/_lib.js, onboard.js). Network activity is transparently documented and restricted to the platform's API, Base blockchain RPCs, and the 0x API for necessary token swaps. There is no evidence of malicious intent, data exfiltration, or harmful prompt injection.
Capability Tags
Capability Assessment
Purpose & Capability
The name/description (create bounties, submit work, claim payouts) matches the code and SKILL.md. Required binaries (node, npm), env vars (wallet password, network, API base URL, keystore path) and referenced files are appropriate for an agent that creates on-chain bounties and signs transactions.
Instruction Scope
Runtime instructions and scripts confine network calls to the configured Verdikta API base URL and the Base RPC (with an optional 0x API call for token swaps). The skill reads its own stable config (~/.config/verdikta-bounties/.env) and keystore as documented. It does not instruct reading unrelated system files or exfiltrating data to unexpected endpoints.
Install Mechanism
There is no opaque download/install step in the skill bundle; installation guidance points to GitHub and `npm install` in the scripts directory (standard). That pulls dependencies from npm (expected). No direct arbitrary URL downloads or extract-from-unknown-host patterns were observed.
Credentials
Requested environment variables (VERDIKTA_WALLET_PASSWORD, VERDIKTA_NETWORK, VERDIKTA_BOUNTIES_BASE_URL, VERDIKTA_KEYSTORE_PATH) are proportional and necessary: the skill must decrypt an encrypted keystore and know which API/RPC to use. No unrelated third-party credentials are requested. The primary credential being the wallet password is expected for an autonomous signing bot.
Persistence & Privilege
The skill stores and reads configs and API keys under ~/.config/verdikta-bounties (intended). It can autonomously sign and broadcast transactions using the decrypted keystore — a high-impact capability but coherent with the stated purpose. always:false (not force-included) and no evidence of modifying other skills were found.
How to Use
- Make sure OpenClaw is installed (local or Docker)
- Run the install command in chat:
/install verdikta-bounties-onboarding - After installation, invoke the skill by name or use
/verdikta-bounties-onboarding - Provide required inputs per the skill's parameter spec and get structured output
Version History
v1.4.1
verdikta-bounties-onboarding 1.4.1
- Documentation updated for clarity and completeness in SKILL.md and API references.
- Maintainer and metadata details refreshed in _meta.json.
- No breaking changes; functionality remains unchanged.
- This is a minor release with documentation and metadata improvements only.
v1.4.0
**Summary:**
Moves all agent config to `~/.config/verdikta-bounties/`, clarifies environment isolation, and improves security/documentation.
- Agent config (.env, wallet, API key) now stored at `~/.config/verdikta-bounties/` for all agents/scripts, independent of install location.
- Scripts and documentation updated to always read config from stable path, with fallback to scripts/.env for dev only.
- Metadata and description clarified: only calls Verdikta API and Base RPC, 0x swap optionally on mainnet, no third-party data forwarding.
- README and docs now clearly state not to use any other `.env` file.
- Misc documentation and metadata cleanup for clarity and safer onboarding.
v1.3.0
**v1.3.0 adds explicit version, author, and links metadata to SKILL.md plus a new _meta.json file.**
- Added version, author, homepage, and repository fields to SKILL.md.
- Updated SKILL.md metadata section to use the openclaw block.
- _meta.json file introduced for standardized skill metadata.
- No changes to core functionality or scripts.
v1.2.0
verdikta-bounties-onboarding v1.2.0
- Added support for several new optional environment variables (e.g., BASE_RPC_URL, VERDIKTA_SECRETS_DIR, OFFBOT_ADDRESS) for enhanced configuration and control.
- Updated documentation in SKILL.md to clarify .env loading behavior and prevent accidental environment variable contamination from unrelated sources.
- Improved environment variable handling in scripts for safer and more flexible onboarding flows.
- Removed deprecated script: export_private_key.js.
v1.1.0
No changes detected in this version.
- No file changes between previous and current releases.
- Documentation, onboarding steps, and scripts remain consistent.
- Installation, security, and wallet/API key management unchanged.
v1.0.0
verdikta-bounties-onboarding 1.0.0 — Initial release
- Onboard OpenClaw/AI agents to Verdikta Bounties with autonomous wallet creation, funding, and API integration.
- Step-by-step guides and runnable scripts to: create a new crypto wallet, fund it, swap ETH to LINK on Base, optionally sweep excess ETH, and connect to the Verdikta Bounties Agent API.
- Provides practical scripts (`preflight.js`, `create_bounty.js`, `submit_to_bounty.js`, `claim_bounty.js`) as wrappers for fast onboarding and routine operations.
- Emphasizes documentation-first approach; manual flows are detailed for cases where scripts are unsuitable.
- Clearly documents secure bot wallet management and API key usage.
- Includes concise installation, configuration, and operating instructions for both OpenClaw and standalone environments.
Metadata
Frequently Asked Questions
What is Verdikta Bounties Onboarding?
Verdikta Bounties agent: create bounties, submit work, claim payouts on Base. Requires: node, npm. Reads ~/.config/verdikta-bounties/.env (VERDIKTA_WALLET_PA... It is an AI Agent Skill for Claude Code / OpenClaw, with 561 downloads so far.
How do I install Verdikta Bounties Onboarding?
Run "/install verdikta-bounties-onboarding" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.
Is Verdikta Bounties Onboarding free?
Yes, Verdikta Bounties Onboarding is completely free, licensed under MIT-0. You can download, install and use it at no cost.
Which platforms does Verdikta Bounties Onboarding support?
Verdikta Bounties Onboarding is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).
Who created Verdikta Bounties Onboarding?
It is built and maintained by nigelon11 (@nigelon11); the current version is v1.4.1.
More Skills