Description

Automates multi-coin spot grid trading on Bitget with dynamic adjustments, risk management, portfolio monitoring, and analysis tools.

README (SKILL.md)

Bitget Trader 🟦

Name: Bitget Data
Author: hotflame-cloud

Professional Bitget integration for automated grid trading and portfolio management.

🚀 Quick Start

Setup Credentials

Save to /Users/zongzi/.openclaw/workspace/bitget_data/config.json:

{
  "apiKey": "bg_your_api_key",
  "secretKey": "your_secret_key",
  "passphrase": "your_passphrase",
  "isSimulation": false
}

API Key Requirements

Permissions: Spot Read + Spot Trade
IP Whitelist: Recommended but optional
Passphrase: Required (set when creating API key)

📊 Basic Commands

Check Balance

node /Users/zongzi/.openclaw/workspace/bitget_data/check-balance.js

Monitor Grid Status

node /Users/zongzi/.openclaw/workspace/bitget_data/monitor-grid.js

Start Grid Trading

node /Users/zongzi/.openclaw/workspace/bitget_data/start-simple.js

Cancel All Orders

node /Users/zongzi/.openclaw/workspace/bitget_data/cancel-all.js

🎯 Grid Trading System

Configuration

Edit /Users/zongzi/.openclaw/workspace/bitget_data/grid_settings.json:

{
  "btc": {
    "symbol": "BTCUSDT",
    "gridNum": 50,
    "priceMin": 63000,
    "priceMax": 70000,
    "amount": 20,
    "maxPosition": 400,
    "sellOrders": 10,
    "buyOrders": 10
  },
  "eth": {
    "symbol": "ETHUSDT",
    "gridNum": 30,
    "priceMin": 1800,
    "priceMax": 2700,
    "amount": 4,
    "maxPosition": 150
  }
}

Parameters

Parameter	Description	Example
`symbol`	Trading pair	BTCUSDT
`gridNum`	Number of grid levels	50
`priceMin`	Minimum price	63000
`priceMax`	Maximum price	70000
`amount`	USDT per order	20
`maxPosition`	Max total position	400
`sellOrders`	Max sell orders	10
`buyOrders`	Max buy orders	10

📈 Available Scripts

Core Trading

Script	Purpose
`monitor-grid.js`	Monitor all grid strategies
`start-simple.js`	Start all grids
`cancel-all.js`	Cancel all orders
`check-balance.js`	Check account balance

Analysis & Optimization

Script	Purpose
`grid-optimizer.js`	Optimize grid parameters
`kline-analyzer.js`	Analyze K-line data
`trade-analyzer.js`	Analyze trade history
`quick-report.js`	Generate quick report

Dynamic Adjustment

Script	Purpose
`dynamic-adjust.js`	Dynamic grid adjustment
`dynamic-rebalance.js`	Portfolio rebalancing
`apply-scheme-a.js`	Apply optimization scheme A

Single Coin Operations

Script	Purpose
`start-eth.js`	Start ETH grid
`deploy-bnb-grid.js`	Deploy BNB grid
`buy-eth-market.js`	Buy ETH at market price

🔧 Advanced Features

1. Multi-Coin Grid Support

Supports concurrent grid trading for multiple coins:

BTCUSDT (Bitcoin)
ETHUSDT (Ethereum)
SOLUSDT (Solana)
BNBUSDT (Binance Coin)

2. Dynamic Grid Adjustment

Automatically adjusts grid parameters based on:

Market volatility
Price trends
Order fill rates
Balance availability

3. Risk Management

Position Limits: Configurable maxPosition per coin
Order Throttling: Prevents API rate limiting
Balance Check: Validates sufficient USDT before deployment

4. Comprehensive Logging

All operations logged to:

grid_monitor.log - Grid status updates
monitor.log - General monitoring logs
trade-analysis.log - Trade analysis results

📊 Reporting

Generate Reports

# Grid status report
node /Users/zongzi/.openclaw/workspace/bitget_data/monitor-grid.js

# Trade analysis
node /Users/zongzi/.openclaw/workspace/bitget_data/trade-analyzer.js

# Quick report
node /Users/zongzi/.openclaw/workspace/bitget_data/quick-report.js

Report Files

GRID_STATUS_REPORT.md - Current grid status
GRID_OPTIMIZATION_REPORT.md - Optimization suggestions
DYNAMIC_STRATEGY_REPORT.md - Dynamic strategy analysis

⚠️ Risk Warning

Cryptocurrency trading involves significant risk
Test with small amounts first
Never invest more than you can afford to lose
API keys should have NO withdrawal permissions

🔐 Security Best Practices

API Key Permissions: Only enable Spot Read + Spot Trade
IP Whitelist: Restrict API access to your IP
No Withdrawal: Never enable withdrawal permissions
Secure Storage: Keep config.json secure (chmod 600)

📝 File Structure

bitget_data/
├── config.json                 # API credentials
├── grid_settings.json          # Grid configurations
├── monitor-grid.js             # Main monitoring script
├── start-simple.js             # Start all grids
├── cancel-all.js               # Cancel all orders
├── check-balance.js            # Check balance
├── grid-optimizer.js           # Grid optimization
├── trade-analyzer.js           # Trade analysis
├── dynamic-adjust.js           # Dynamic adjustments
├── grid_monitor.log            # Monitoring logs
└── SKILL.md                    # This file

🆘 Troubleshooting

Common Issues

1. Signature Mismatch

Check API key format (should start with bg_)
Verify secret key is correct
Ensure system time is synchronized

2. Proxy Connection Failed

Ensure proxy is running on port 7897
Check ClashX/Shadowrocket status
Try: curl -x http://127.0.0.1:7897 https://api.bitget.com

3. Insufficient Balance

Check USDT balance: node check-balance.js
Reduce amount or gridNum in grid_settings.json
Consider restoring original config from backup

4. Orders Not Filling

Check grid price range covers current market price
Verify order quantity meets exchange minimum
Review grid spacing (may be too tight/wide)

📚 API Reference

Bitget API v2 Endpoints

Endpoint	Method	Purpose
`/api/v2/spot/account`	GET	Get account info
`/api/v2/spot/orders`	GET	Get open orders
`/api/v2/spot/place-order`	POST	Place order
`/api/v2/spot/cancel-order`	POST	Cancel order
`/api/v2/spot/market-tickers`	GET	Get market prices

Signature Generation

const timestamp = new Date().toISOString().split('.')[0] + '.000Z';
const method = 'GET';
const path = '/api/v2/spot/account';
const body = '';
const signStr = timestamp + method + path + body;
const signature = crypto.createHmac('sha256', secretKey).update(signStr).digest('base64');

🎯 Quick Commands Reference

# Monitor all grids
node monitor-grid.js

# Start trading
node start-simple.js

# Stop trading (cancel all)
node cancel-all.js

# Check balance
node check-balance.js

# Optimize grids
node grid-optimizer.js

# Analyze trades
node trade-analyzer.js

# Generate report
node quick-report.js

Version: 1.0.0
Exchange: Bitget
Type: Spot Grid Trading
Last Updated: 2026-03-10

Usage Guidance

Key things to consider before installing or running this skill: - Do not run it as-is. The repo contains many Node scripts that will execute trades if given API keys; running them with real keys can place real funds at risk. - Plaintext credentials found in repository docs: treat them as compromised. If any of those keys are real, rotate/revoke them immediately and never reuse them. - The registry metadata omitted required items: Node.js is required but not declared; the skill expects a config.json with Bitget apiKey/secret/passphrase even though requires.env lists none. Ask the publisher to fix the manifest and document runtime requirements. - Prefer storing API credentials in a secure secret store or environment variables rather than a file in a workspace. If you must use config.json, restrict its filesystem permissions (chmod 600) and run in an isolated VM/container. - Run first in simulation mode (isSimulation: true) or against a test account with zero funds. Ensure API keys have NO withdrawal permission and whitelist your IP(s). - Review all shipped scripts (especially multi_agent_controller.js, cron setup, and any scripts that call external endpoints) to confirm they do exactly what you expect and do not exfiltrate data or post to third‑party endpoints. - Because the skill creates cron tasks and long‑running agents, run it in a secure, monitored environment (dedicated VM/container) and audit cron/agent changes. - Ask the publisher for: (1) removal of any hard-coded credentials from the repo, (2) a manifest declaring required binaries (node) and required secrets, and (3) a minimal example showing how to run in a safe test/simulated mode. If you want, I can: (A) point to the exact files that contain the plaintext credentials and cron instructions, (B) list the minimal changes to run safely in simulation, or (C) produce a checklist for an internal code review before deployment.

Capability Analysis

Type: OpenClaw Skill Name: bitget-data Version: 1.0.0 The skill bundle contains hardcoded Bitget API credentials (apiKey and secretKey) within 'config.json' and 'multi_agent_config.json', posing a severe security risk. Several scripts, notably 'dynamic-adjust.js', 'dynamic-adjust-v2.js', and 'grid-optimizer.js', exhibit suspicious behavior by dynamically generating and writing new executable JavaScript files (e.g., 'apply-dynamic-grid.js', 'save-optimized-config.js') to the workspace. While these appear intended for trading automation, the practice of self-generating executable code is a high-risk pattern. Furthermore, the bundle relies on hardcoded absolute paths and uses 'execSync' in 'bitget-cli.js' and 'quick-start.js' to execute local scripts, which is a significant vulnerability.

Capability Assessment

ℹ Purpose & Capability

The name/description and the included scripts align: this is a full-featured Bitget grid trading toolkit (many deploy/monitor/optimizer scripts). However the package metadata claims no required env vars or binaries while the SKILL.md and many scripts assume Node.js and a local config.json with Bitget API credentials; that mismatch is unexpected and should be clarified.

⚠ Instruction Scope

SKILL.md tells the agent (and user) to write Bitget API credentials to a specific file (/Users/zongzi/.openclaw/workspace/bitget_data/config.json), run many 'node' scripts via absolute paths, add cron jobs, and rely on a local proxy (127.0.0.1:7897). The instructions therefore require filesystem access, long-running cron persistence, network/proxy access, and secrets storage. Those instructions stay within trading scope but they also prescribe actions (writing credentials to disk, scheduling tasks) that expand the skill's runtime privilege and persistence surface.

ℹ Install Mechanism

There is no install spec (instruction-only), which limits remote code downloads. However many JavaScript files are present and the SKILL.md assumes Node will be invoked. The registry did not declare Node or any runtime dependency — that's inconsistent and should be fixed (declare 'node' as required). No external archive/download URLs are present in the provided data.

⚠ Credentials

The metadata lists no required credentials, yet SKILL.md requires a Bitget API key/secret/passphrase stored in config.json. Worse: repository documentation contains at least one explicit API key/secret/passphrase example (MULTI_AGENT_SETUP_GUIDE shows what appear to be real credentials: bg_73063f99..., secret ecdc7020..., passphrase Lin12345). Embedding plaintext API credentials in files is a strong red flag (credential leakage or reuse). The skill also references a Feishu chatId/alerts in multi-agent config, implying notifications; these additional integrations increase credential scope without being declared.

ℹ Persistence & Privilege

always:false (good). But SKILL.md and other docs instruct creating cron jobs and multi-agent controllers that run periodically and can modify local configs (scheduling/persistence). That increases runtime persistence and blast radius; it's not inherently malicious but combined with embedded credentials and absolute-path scripts it's riskier and should be treated cautiously.

Version History

v1.0.0

Bitget-data v1.0.0 initial release: - Professional Bitget integration for automated grid trading and portfolio management. - Supports multi-coin grid trading (BTC, ETH, SOL, BNB) with advanced configuration and dynamic adjustment. - Includes comprehensive commands for monitoring, starting, stopping trading, and generating reports. - Risk management features: position limits, order throttling, and balance checks. - Provides logging, analysis, optimization, and quick reporting tools.

Metadata

Slug bitget-data

Version 1.0.0

License MIT-0

All-time Installs 0

Active Installs 0

Total Versions 1

Frequently Asked Questions

What is Bitget Data?

Automates multi-coin spot grid trading on Bitget with dynamic adjustments, risk management, portfolio monitoring, and analysis tools. It is an AI Agent Skill for Claude Code / OpenClaw, with 269 downloads so far.

How do I install Bitget Data?

Run "/install bitget-data" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.

Is Bitget Data free?

Yes, Bitget Data is completely free, licensed under MIT-0. You can download, install and use it at no cost.

Which platforms does Bitget Data support?

Bitget Data is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).

Who created Bitget Data?

It is built and maintained by hotflame-cloud (@hotflame-cloud); the current version is v1.0.0.

More Skills

Bitget Data