← Back to Skills Marketplace
haresh-sai06

Haresh Checkout Flow

by Haresh Sainaath S · GitHub ↗ · v1.0.1
cross-platform ⚠ suspicious
312
Downloads
0
Stars
1
Active Installs
2
Versions
Install in OpenClaw
/install haresh-checkout-flow
Description
Process e-commerce checkout via n8n webhook integration
README (SKILL.md)

Checkout Flow Skill

Purpose

Manages the complete checkout process including validation, authentication, shipping, and payment.

When to Use

  • User wants to checkout or place an order
  • User asks to proceed to payment
  • User wants to complete their purchase

Workflow

Step 1: Validate Cart

Call n8n webhook at http://localhost:5678/webhook/checkout-validate to check cart items availability and inventory status

Step 2: Check Authentication

Determine if user is authenticated from context. If guest, present login options or continue as guest.

Step 3: Collect Shipping Information

Show saved addresses for authenticated users or collect details for guests.

Step 4: Payment Processing

Present payment options and call n8n webhook at http://localhost:5678/webhook/checkout-process

Step 5: Order Confirmation

Display order summary and get final confirmation from user.

Security Requirements

  • Verify authentication status from JWT claims
  • Never store or log full payment details
  • Validate all inputs before sending to backend

Error Handling

  • If cart validation fails, show specific errors
  • If payment fails, allow retry with different method
  • If inventory changes, notify user\r
Usage Guidance
This skill appears to be an instruction-only integration that calls local n8n webhooks to run checkout flows. Before installing or using it, verify the following: (1) Confirm the n8n webhook endpoints are indeed local and under your control (running on localhost) and not modified to point to external hosts. (2) Audit the webhook implementations to ensure they do not forward raw card numbers or other secrets off your network; prefer tokenized payment flows where the frontend exchanges card data directly with a PCI-compliant processor and the webhook receives only tokens. (3) Clarify how the agent obtains JWT claims and ensure it will not read or exfiltrate credentials stored elsewhere (env files, browser cookies, key stores) unless you explicitly allow it. (4) Use TLS and authentication on webhook endpoints if you ever run them on non-localhost addresses. Because the instructions are vague about sensitive-data handling, review the webhook code and test in a staging environment before using with real payments.
Capability Analysis
Type: OpenClaw Skill Name: haresh-checkout-flow Version: 1.0.1 The skill bundle defines an e-commerce checkout flow that integrates with a local n8n webhook service running on `http://localhost:5678`. This behavior is explicitly stated in the `SKILL.md` description and workflow steps, aligning with the skill's stated purpose of 'n8n webhook integration'. There is no evidence of data exfiltration, malicious execution, persistence mechanisms, prompt injection attempts against the agent, or obfuscation. The `localhost` calls are functional and not indicative of malicious intent, especially given the explicit security requirements mentioned in the markdown.
Capability Assessment
Purpose & Capability
Name and description align with the runtime instructions: the skill calls n8n webhooks (checkout-validate and checkout-process) on localhost to manage checkout, which is coherent with an n8n-based checkout flow. It does not request unrelated credentials or binaries.
Instruction Scope
Instructions direct the agent to call local webhooks (http://localhost:5678/...), check authentication from 'JWT claims', and handle payment processing. The SKILL.md does not specify which fields are safe to send to the webhook or require tokenization of payment data; it only says 'Never store or log full payment details' but does not forbid sending raw card data to the webhook. The source of the JWT and any headers/credentials to include when calling the webhook are left unspecified. This vagueness could allow the agent to transmit sensitive data to the webhook (and potentially onward), or mishandle authentication claims.
Install Mechanism
No install spec or code files are included (instruction-only). Nothing is written to disk or downloaded during install, which reduces install-time risk.
Credentials
The skill declares no required environment variables or credentials, which is consistent with calling local webhooks. However, it instructs verifying authentication from JWT claims without stating how the JWT is accessed; if the agent pulls JWTs from environment, cookies, or other contexts, that behavior should be explicit. Lack of declared credentials is reasonable but leaves ambiguity about where authentication tokens come from.
Persistence & Privilege
always is false and the skill is user-invocable. It does not request persistent presence or elevated platform privileges.
How to Use
  1. Make sure OpenClaw is installed (local or Docker)
  2. Run the install command in chat: /install haresh-checkout-flow
  3. After installation, invoke the skill by name or use /haresh-checkout-flow
  4. Provide required inputs per the skill's parameter spec and get structured output
Version History
v1.0.1
- Added metadata file (_meta.json) for improved skill management and integration.
v1.0.0
haresh-checkout-flow 1.0.0 - Initial release of the checkout flow skill. - Supports end-to-end e-commerce checkout via n8n webhook integration. - Handles cart validation, authentication, shipping info, payment processing, and order confirmation. - Provides clear steps for error handling and security requirements.
Metadata
Slug haresh-checkout-flow
Version 1.0.1
License
All-time Installs 1
Active Installs 1
Total Versions 2
Frequently Asked Questions

What is Haresh Checkout Flow?

Process e-commerce checkout via n8n webhook integration. It is an AI Agent Skill for Claude Code / OpenClaw, with 312 downloads so far.

How do I install Haresh Checkout Flow?

Run "/install haresh-checkout-flow" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.

Is Haresh Checkout Flow free?

Yes, Haresh Checkout Flow is completely free (open-source). You can download, install and use it at no cost.

Which platforms does Haresh Checkout Flow support?

Haresh Checkout Flow is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).

Who created Haresh Checkout Flow?

It is built and maintained by Haresh Sainaath S (@haresh-sai06); the current version is v1.0.1.

More Skills
self-improving agent
Captures learnings, errors, and corrections to enable continuous improvement. Use when: (1) A command or operation fails unexpectedly, (2) User corrects Clau...
⬇ 463368 · by pskoett
Skill Vetter
Security-first skill vetting for AI agents. Use before installing any skill from ClawdHub, GitHub, or other sources. Checks for red flags, permission scope, and suspicious patterns.
⬇ 259467 · by spclaudehome
Polymarket
Query Polymarket prediction markets. Check odds, find trending markets, search events, track price movements.
⬇ 232503 · by joelchance
Self-Improving + Proactive Agent
Self-reflection + Self-criticism + Self-learning + Self-organizing memory. Agent evaluates its own work, catches mistakes, and improves permanently. Use when...
⬇ 200457 · by ivangdavila
Github
Interact with GitHub using the `gh` CLI. Use `gh issue`, `gh pr`, `gh run`, and `gh api` for issues, PRs, CI runs, and advanced queries.
⬇ 191163 · by steipete
ontology
Typed knowledge graph for structured agent memory and composable skills. Use when creating/querying entities (Person, Project, Task, Event, Document), linkin...
⬇ 190189 · by oswalpalash

💬 Comments