← Back to Skills Marketplace
stanestane

Stripe API

by Stanislav Stankovic · GitHub ↗ · v1.0.0 · MIT-0
cross-platform ⚠ suspicious
74
Downloads
0
Stars
0
Active Installs
1
Versions
Install in OpenClaw
/install stripe-api-readonly
Description
Use Stripe's live REST API for authenticated account inspection and operational lookup. Use when you need to connect to a Stripe account with a secret key, i...
Usage Guidance
This skill appears to be a straightforward Stripe read-only helper, but proceed carefully: (1) the skill requires STRIPE_SECRET_KEY at runtime even though the registry metadata doesn't declare it — verify this before installing; (2) only use a limited/restricted Stripe key or a test key when possible (do not paste or reuse a production full-access key unless you trust the source); (3) review the included scripts yourself — they only call api.stripe.com and print results, but you should confirm there are no hidden network calls; (4) prefer creating a restricted API key scoped to read-only endpoints or a test account; (5) if you must share a live key with this skill, rotate the key afterwards; and (6) ask the publisher to update the metadata to declare STRIPE_SECRET_KEY as the primary credential and publish a verifiable homepage/source so you can validate provenance.
Capability Analysis
Type: OpenClaw Skill Name: stripe-api-readonly Version: 1.0.0 The skill is a legitimate tool for interacting with the Stripe API. The Python script `scripts/stripe_api.py` uses only standard libraries to perform authenticated requests to the official Stripe API endpoint (api.stripe.com) and does not exhibit any signs of data exfiltration, obfuscation, or unauthorized execution. The documentation in `SKILL.md` and `references/objects-and-workflows.md` emphasizes security best practices, such as avoiding hardcoded secrets and preferring read-only operations.
Capability Tags
cryptocan-make-purchases
Capability Assessment
Purpose & Capability
Name, description, SKILL.md, and the included script are coherent: the skill is a minimal Stripe read-only inspector and would legitimately need a Stripe secret key. However, the registry metadata lists no required env var or primary credential even though the runtime instructions and script require STRIPE_SECRET_KEY. That metadata omission is an inconsistency.
Instruction Scope
SKILL.md tells the agent to set STRIPE_SECRET_KEY and run the provided Python helper. The helper only issues HTTPS requests to api.stripe.com and prints JSON. The instructions explicitly recommend read-only operations and ask for user confirmation before any future write actions. The skill does not instruct reading unrelated files, system paths, or forwarding data to unknown endpoints.
Install Mechanism
No install spec — instruction-only with a small included Python script that uses only the standard library (urllib). Nothing is downloaded from arbitrary URLs or written to unexpected locations.
Credentials
Runtime requires a live Stripe secret (STRIPE_SECRET_KEY), which is a powerful credential, but the registry metadata does not declare this env var or a primary credential. That mismatch reduces transparency and increases risk because users may not realize they must provide a secret. The skill asks for no other unrelated credentials (which is appropriate).
Persistence & Privilege
always is false and the skill doesn't request persistent system-level privileges or modify other skills. Autonomous invocation is enabled by default but not accompanied by other worrying privileges.
How to Use
  1. Make sure OpenClaw is installed (local or Docker)
  2. Run the install command in chat: /install stripe-api-readonly
  3. After installation, invoke the skill by name or use /stripe-api-readonly
  4. Provide required inputs per the skill's parameter spec and get structured output
Version History
v1.0.0
Initial release: authenticated read-only Stripe API inspection skill with account, payments, billing, payouts, disputes, and webhook lookup helpers.
Metadata
Slug stripe-api-readonly
Version 1.0.0
License MIT-0
All-time Installs 0
Active Installs 0
Total Versions 1
Frequently Asked Questions

What is Stripe API?

Use Stripe's live REST API for authenticated account inspection and operational lookup. Use when you need to connect to a Stripe account with a secret key, i... It is an AI Agent Skill for Claude Code / OpenClaw, with 74 downloads so far.

How do I install Stripe API?

Run "/install stripe-api-readonly" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.

Is Stripe API free?

Yes, Stripe API is completely free, licensed under MIT-0. You can download, install and use it at no cost.

Which platforms does Stripe API support?

Stripe API is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).

Who created Stripe API?

It is built and maintained by Stanislav Stankovic (@stanestane); the current version is v1.0.0.

More Skills
self-improving agent
Captures learnings, errors, and corrections to enable continuous improvement. Use when: (1) A command or operation fails unexpectedly, (2) User corrects Clau...
⬇ 463283 · by pskoett
Skill Vetter
Security-first skill vetting for AI agents. Use before installing any skill from ClawdHub, GitHub, or other sources. Checks for red flags, permission scope, and suspicious patterns.
⬇ 259410 · by spclaudehome
Polymarket
Query Polymarket prediction markets. Check odds, find trending markets, search events, track price movements.
⬇ 232503 · by joelchance
Self-Improving + Proactive Agent
Self-reflection + Self-criticism + Self-learning + Self-organizing memory. Agent evaluates its own work, catches mistakes, and improves permanently. Use when...
⬇ 200423 · by ivangdavila
Github
Interact with GitHub using the `gh` CLI. Use `gh issue`, `gh pr`, `gh run`, and `gh api` for issues, PRs, CI runs, and advanced queries.
⬇ 191115 · by steipete
ontology
Typed knowledge graph for structured agent memory and composable skills. Use when creating/querying entities (Person, Project, Task, Event, Document), linkin...
⬇ 190156 · by oswalpalash

💬 Comments