← Back to Skills Marketplace
MoonPay
by
Kevin Arifin
· GitHub ↗
· v0.6.24
544
Downloads
0
Stars
0
Active Installs
2
Versions
Install in OpenClaw
/install moonpay
Description
Your agent needs money. MoonPay is the crypto onramp for AI agents — wallets, swaps, bridges, transfers, DCA, limit orders, deposits, market data, and fiat o...
Usage Guidance
This skill appears to be a legitimate CLI integration for MoonPay, but take these precautions before installing or enabling it: 1) Verify the npm package owner/publisher (@moonpay/cli) is authentic (check the package page, signatures, and publisher identity) before allowing a global npm install. 2) Be aware the CLI stores credentials locally (~/.config/moonpay/credentials.json and OS keychain) and can perform on-chain transfers and fiat buys — treat this like giving software access to a wallet. 3) Avoid running the MCP server (mp mcp) unless you trust every MCP client that can connect; it exposes CLI functionality to external clients and could allow other tools to trigger financial actions. 4) If you enable the skill for autonomous agent use, restrict agent permissions and monitor transactions closely (or require explicit human confirmation for buys/transfers). 5) If you only need read-only market data, prefer limiting the agent to token search/balance calls or use a read-only API key (if available). If you want, provide the actual npm package metadata (publisher, tarball checksum, or source repository) and I can re-check provenance and raise or lower confidence accordingly.
Capability Analysis
Type: OpenClaw Skill
Name: moonpay
Version: 0.6.24
The skill bundle is classified as suspicious due to its inherent high-risk capabilities involving cryptocurrency transactions, wallet management, and fiat on/off-ramps. While the `SKILL.md` documentation itself does not contain explicit malicious instructions or prompt injections, it instructs the agent to install an external Node.js package (`@moonpay/cli`) via `npm install -g`, which introduces a supply chain vulnerability. The skill also involves managing cryptographic keys locally and performing irreversible financial operations, which, if exploited through a vulnerability in the underlying CLI tool or agent misuse, could lead to significant financial loss. The presence of safety rules (simulate-then-execute) is noted, but the overall risk profile remains high.
Capability Assessment
Purpose & Capability
Name/description (MoonPay CLI for wallets, swaps, deposits, fiat on/off ramps) aligns with the declared install (npm package @moonpay/cli) and the required binary (mp). No unrelated environment variables or unrelated binaries are requested.
Instruction Scope
SKILL.md instructs typical CLI operations (login, wallet create, token swap) which are consistent with the purpose, but it also documents 'mp mcp' to start a local MCP server that 'exposes all CLI + remote tools to any MCP-compatible client'. That can expose wallet operations to other MCP clients and increases the attack surface. The doc also references the credentials storage path (~/.config/moonpay/credentials.json) even though 'required config paths' lists none; this should be expected for a CLI but is worth calling out.
Install Mechanism
Install is via an npm package (@moonpay/cli) which is a reasonable and expected mechanism for providing an 'mp' binary. npm installs are moderate-risk (packages can contain arbitrary code); this is proportionate to a full-featured CLI but you should verify package provenance (publisher, signature) before installing globally.
Credentials
The skill does not request environment variables or external credentials in the registry metadata, which is consistent with an interactive CLI that uses local login flows. The runtime doc references Bearer tokens and OAuth/PKCE and says credentials are stored at ~/.config/moonpay/credentials.json (OS keychain encryption claimed). Not requesting env vars is reasonable, but the skill will hold persistent credentials and private keys locally — that persistence and their storage location are important to review.
Persistence & Privilege
always:false and model-invocation not disabled (normal). The skill does not request force-inclusion privileges. Note: allowing autonomous agent invocation with a payments/trading CLI means the agent could initiate financial actions (swaps, transfers, buys) if given permission — consider limiting autonomy for financial operations.
How to Use
- Make sure OpenClaw is installed (local or Docker)
- Run the install command in chat:
/install moonpay - After installation, invoke the skill by name or use
/moonpay - Provide required inputs per the skill's parameter spec and get structured output
Version History
v0.6.24
Remove server-side tools section
v0.6.23
First moonwalk. One small step for agents, one giant leap for crypto.
Metadata
Frequently Asked Questions
What is MoonPay?
Your agent needs money. MoonPay is the crypto onramp for AI agents — wallets, swaps, bridges, transfers, DCA, limit orders, deposits, market data, and fiat o... It is an AI Agent Skill for Claude Code / OpenClaw, with 544 downloads so far.
How do I install MoonPay?
Run "/install moonpay" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.
Is MoonPay free?
Yes, MoonPay is completely free (open-source). You can download, install and use it at no cost.
Which platforms does MoonPay support?
MoonPay is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).
Who created MoonPay?
It is built and maintained by Kevin Arifin (@kevarifin14); the current version is v0.6.24.
More Skills