← Back to Skills Marketplace
650
Downloads
0
Stars
0
Active Installs
4
Versions
Install in OpenClaw
/install paygents
Description
Accept crypto payments in AI agent conversations. Generate MetaMask/Trust Wallet deeplinks, verify transactions on-chain, check balances, issue receipts. No...
Usage Guidance
This skill appears to do what it says: build mobile wallet deeplinks, query public RPCs to verify transactions, and produce receipts — and it does not request private keys or API keys. Before installing or enabling it: 1) Be aware public RPC endpoints (default fallbacks) will see wallet addresses and tx hashes; set RPC_<chainId> env vars or a local config.json to point to a private node if you want more privacy. 2) The skill can write receipts to disk (if you use --out) and the instructions recommend persisting a wallet preference — decide whether you want that stored in agent memory or cleared between sessions. 3) The rpc-config code looks for config.json in the skill root and the current working directory — ensure you review any config.json it might pick up to avoid unintended data exposure. 4) Test on a testnet (Sepolia / Base Sepolia) before using mainnet, and verify the skill's origin (the manifest's source is unknown; README references a GitHub repo). 5) No API keys are required, and you should never type or paste private keys into prompts; the workflow intentionally relies on the user's wallet app to approve transactions. If you need stronger privacy, point RPC_* to a node you control and avoid enabling long-term persistence of wallet preferences or receipts.
Capability Analysis
Type: OpenClaw Skill
Name: paygents
Version: 0.3.0
The skill bundle implements legitimate cryptocurrency payment functionalities for an AI agent. However, the `scripts/evm-receipt.sh` script contains a path traversal vulnerability via the `--out` parameter. An attacker could craft a prompt to the agent to use this parameter with a path traversal payload (e.g., `../../../../tmp`) to write receipt files to arbitrary locations on the filesystem where the agent has write permissions. While this is a significant vulnerability, there is no clear evidence of intentional malicious behavior (e.g., writing to sensitive system files with malicious content or exfiltrating data) within the skill's code or instructions, classifying it as suspicious rather than malicious.
Capability Assessment
Purpose & Capability
The name/description (generate MetaMask/Trust deeplinks, verify txs, check balances, issue receipts) matches the included scripts and library. Declared requirements (node, bash) are appropriate for the shipped JS/Bash scripts. There are no extraneous credentials or unrelated binaries requested.
Instruction Scope
SKILL.md and the scripts focus on link generation, RPC calls, scanning blocks/logs, and receipt generation—all within the described scope. The instructions ask the agent to "ask once, remember forever" for wallet preference and to persist session memory; the codebase does not implement agent memory handling but does provide file-based receipt saving. The skill will query public RPC endpoints by default (exposing queried addresses/tx hashes to those RPC operators), which the README/SKILL.md does note. The instruction to "remember forever" is a privacy/persistence choice and should be considered when enabling the skill.
Install Mechanism
No install spec or remote downloads are used; this is an instruction-only skill with local scripts included. Nothing in the manifest installs external binaries or fetches code at runtime. Risk from install mechanism is low.
Credentials
The skill declares no required env vars or credentials (consistent with 'no API keys'). The code supports optional RPC overrides via environment variables named RPC_<chainId> and reading a local config.json; these are reasonable for RPC customization but are not listed in requires.env. Public RPC fallbacks are hardcoded and will see addresses/tx hashes used. The scripts may also read a config.json from the skill root or current working directory — review that file before running to avoid unintended config leakage. No other secrets or unrelated credentials are requested.
Persistence & Privilege
always:false. The skill suggests persisting a user's wallet preference ('remember forever') in agent memory; the provided code does not implement the agent memory storage but does implement writing receipts to disk if requested. Persisted preferences or saved receipts are normal for this functionality but are a privacy consideration: they can contain wallet addresses, tx hashes, memos, and merchant names. The skill does not modify other skills or global agent settings.
How to Use
- Make sure OpenClaw is installed (local or Docker)
- Run the install command in chat:
/install paygents - After installation, invoke the skill by name or use
/paygents - Provide required inputs per the skill's parameter spec and get structured output
Version History
v0.3.0
Fix script paths, add Quick Start, unified branding, improved description
v0.2.0
Configurable RPC endpoints: env vars, config.json, or public fallbacks. No more hardcoded RPCs.
v0.1.1
Fix: declare node/bash requirements, clarify RPC privacy, improve wallet preference docs
v0.1.0
Initial release
Metadata
Frequently Asked Questions
What is PayGents?
Accept crypto payments in AI agent conversations. Generate MetaMask/Trust Wallet deeplinks, verify transactions on-chain, check balances, issue receipts. No... It is an AI Agent Skill for Claude Code / OpenClaw, with 650 downloads so far.
How do I install PayGents?
Run "/install paygents" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.
Is PayGents free?
Yes, PayGents is completely free (open-source). You can download, install and use it at no cost.
Which platforms does PayGents support?
PayGents is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).
Who created PayGents?
It is built and maintained by Amitay (@amitaybohadana); the current version is v0.3.0.
More Skills