← Back to Skills Marketplace
glitch003

Safe Skills

by Chris Cassano · GitHub ↗ · v1.0.0
cross-platform ⚠ suspicious
1803
Downloads
1
Stars
0
Active Installs
1
Versions
Install in OpenClaw
/install safe-skills
Description
Securely create and manage EVM wallets; perform token transfers, check balances, and send transactions without exposing raw secret keys.
Usage Guidance
Key things to consider before installing or enabling this skill: - Verify the external service: the default API URL points to a Railway-hosted app (safeskill-production.up.railway.app). Confirm you trust the operator/owner before giving it any access to wallets or funds. - Metadata mismatch: the SKILL.md expects an API key and optionally SAFESKILLS_API_URL, but the registry declares no required env vars or primary credential. Ask the publisher to update metadata to explicitly list required env vars and the primary credential. - High-impact actions: the skill can create wallets and perform transfers or arbitrary contract calls. If you allow model invocation, require the agent to obtain explicit user confirmation for any transfer or transaction, or disable autonomous invocation. - Secret handling: the instructions say to "store the API key" but give no secure-storage guidance. Ensure the agent does not persist raw API keys in plaintext or expose them in logs. Prefer a vetted secret store and least-privilege policies. - Test safely: if you want to evaluate the skill, test using a testnet chain (Sepolia is the default chainId shown) and small amounts first. - If you cannot validate the service owner or the metadata fixes, treat this skill as untrusted and do not allow it to hold real funds or run autonomously. My assessment is "suspicious" (medium confidence) because the instructions and actions make sense for a secret/wallet service, but the missing declared credentials and lack of operational safeguards (where/how the API key is stored, user-confirmation for transfers, unverified external endpoint) are notable red flags. Additional information that would raise confidence to "high": explicit metadata listing required env vars/primary credential, published owner/contact information, and documented safe storage/confirmation behavior for transactions.
Capability Analysis
Type: OpenClaw Skill Name: safe-skills Version: 1.0.0 The skill bundle is designed for secure secret management, specifically for EVM wallets, where the AI agent never directly accesses raw secret values. The `SKILL.md` explicitly instructs the agent 'Never attempt to access or request raw secret values,' which is a defensive prompt injection. All operations involve standard API calls to a specified external service (`https://safeskill-production.up.railway.app`) using `curl`, without any evidence of data exfiltration, malicious execution, persistence mechanisms, or other harmful behaviors. The instructions are clear, transparent, and align with the stated purpose of managing an EVM wallet through a secure intermediary.
Capability Assessment
Purpose & Capability
SKILL.md describes a secret-management/EVM-wallet service that requires a Bearer API key for all requests and references SAFESKILLS_API_URL/SAFESKILLS_FRONTEND_URL, but the skill metadata declares no required environment variables or primary credential. A secrets/wallet skill would reasonably need to declare those credentials and a primaryEnv; the absence is an inconsistency.
Instruction Scope
Runtime instructions show the agent calling an external API to create wallets, store an API key, check balances, transfer tokens, and send arbitrary transactions (including raw calldata). The instructions reference an env var (SAFESKILLS_API_URL) not declared in metadata and tell the agent to "store the returned API key" without specifying secure storage. The agent could be directed to perform financial operations or persist credentials without clear safeguards or user confirmation.
Install Mechanism
No install spec and no code files: instruction-only skill. This minimizes on-disk risk since nothing is downloaded or executed locally as part of installation.
Credentials
Although the workflow clearly requires an API key for the external service and optionally the SAFESKILLS_API_URL env var, the skill metadata lists no required env vars or primary credential. That mismatch (required secrets present in practice but not declared) is disproportionate and reduces transparency about what secrets/permissions the skill will use.
Persistence & Privilege
always:false and autonomous invocation are default, but the skill's capabilities let an agent (if allowed) initiate token transfers and arbitrary transactions using the external API key. Combined with the instruction to "store the API key" this increases risk—agents should require explicit, auditable user confirmation before any financial action and guidance on where/how API keys are stored.
How to Use
  1. Make sure OpenClaw is installed (local or Docker)
  2. Run the install command in chat: /install safe-skills
  3. After installation, invoke the skill by name or use /safe-skills
  4. Provide required inputs per the skill's parameter spec and get structured output
Version History
v1.0.0
Initial release of SafeSkills – secure secret management for AI agents. - Provides secure, server-side secret management (initially for EVM wallets), ensuring agents never access raw secret values. - Supports wallet creation, checking balances (native and ERC-20), transferring tokens, and sending arbitrary transactions via API. - API Keys are required for all calls and must be securely stored after wallet creation. - Introduces a claim URL for users to manage wallet policies and monitor activity. - Supports environment variable configuration for API endpoints. - Security reminder: never request or access raw secret values; all operations run server-side.
Metadata
Slug safe-skills
Version 1.0.0
License
All-time Installs 0
Active Installs 0
Total Versions 1
Frequently Asked Questions

What is Safe Skills?

Securely create and manage EVM wallets; perform token transfers, check balances, and send transactions without exposing raw secret keys. It is an AI Agent Skill for Claude Code / OpenClaw, with 1803 downloads so far.

How do I install Safe Skills?

Run "/install safe-skills" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.

Is Safe Skills free?

Yes, Safe Skills is completely free (open-source). You can download, install and use it at no cost.

Which platforms does Safe Skills support?

Safe Skills is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).

Who created Safe Skills?

It is built and maintained by Chris Cassano (@glitch003); the current version is v1.0.0.

More Skills
self-improving agent
Captures learnings, errors, and corrections to enable continuous improvement. Use when: (1) A command or operation fails unexpectedly, (2) User corrects Clau...
⬇ 463283 · by pskoett
Skill Vetter
Security-first skill vetting for AI agents. Use before installing any skill from ClawdHub, GitHub, or other sources. Checks for red flags, permission scope, and suspicious patterns.
⬇ 259410 · by spclaudehome
Polymarket
Query Polymarket prediction markets. Check odds, find trending markets, search events, track price movements.
⬇ 232503 · by joelchance
Self-Improving + Proactive Agent
Self-reflection + Self-criticism + Self-learning + Self-organizing memory. Agent evaluates its own work, catches mistakes, and improves permanently. Use when...
⬇ 200423 · by ivangdavila
Github
Interact with GitHub using the `gh` CLI. Use `gh issue`, `gh pr`, `gh run`, and `gh api` for issues, PRs, CI runs, and advanced queries.
⬇ 191115 · by steipete
ontology
Typed knowledge graph for structured agent memory and composable skills. Use when creating/querying entities (Person, Project, Task, Event, Document), linkin...
⬇ 190156 · by oswalpalash

💬 Comments