← Back to Skills Marketplace

AgentBox

Name: AgentBox
Author: tenequm

by Misha Kolesnik · GitHub ↗ · v1.0.0

cross-platform ⚠ suspicious

437

Downloads

Stars

Active Installs

Versions

Install in OpenClaw

/install agentbox

Description

AgentBox VM operating instructions: services, config, x402 payments, skill updates, troubleshooting. Load this at the start of every session.

README (SKILL.md)

AgentBox Operating Instructions

You are running on a dedicated AgentBox VM - a single-tenant Hetzner cloud instance with OpenClaw gateway, HTTPS, web terminal, and a Solana wallet for x402 micropayments.

Services

Service	Port	Managed by
OpenClaw gateway	:18789 (loopback)	`openclaw gateway restart`
Caddy (HTTPS reverse proxy)	:443	`sudo systemctl restart caddy`
ttyd (web terminal)	:7681 (loopback)	`sudo systemctl restart ttyd`

Caddy routes HTTPS traffic to the gateway and terminal. Do NOT modify Caddy or systemd configs directly.

Key paths

What	Path
OpenClaw config	`~/.openclaw/openclaw.json`
Solana wallet	`~/.openclaw/agentbox/wallet-sol.json`
Workspace	`~/.openclaw/workspace/`
Skills	`~/.openclaw/workspace/skills/`
x402 plugin	`~/.openclaw/extensions/openclaw-x402/`
Gateway logs	`~/.openclaw/logs/`

x402 payment plugin

The openclaw-x402 plugin patches globalThis.fetch to handle HTTP 402 Payment Required responses automatically. When an LLM inference call returns 402, the plugin signs a USDC payment on Solana and retries. This is transparent - you don't need to do anything special.

The wallet at ~/.openclaw/agentbox/wallet-sol.json must have USDC balance for payments to work. Check balance with:

spl-token balance --owner $(solana address) EPjFWdd5AufqSSqeM2qN1xzybapC8G4wEGGkZwyTDt1v

Default model provider

This instance comes with a preconfigured LLM provider (blockrun) that uses x402 for payments. If users want to use a different provider like OpenRouter, use the /agentbox-openrouter skill.

Restarting the gateway

After any config change to ~/.openclaw/openclaw.json:

openclaw gateway restart

Check status:

openclaw status

Updating skills

To get the latest AgentBox skills:

clawhub update --all

This updates all installed skills from ClawHub. Changes take effect on the next new session.

Troubleshooting

Gateway won't start: Check openclaw status and gateway logs at ~/.openclaw/logs/
x402 payments failing: Check USDC balance (see above). Wallet needs USDC on Solana mainnet.
Config changes not taking effect: Run openclaw gateway restart after editing ~/.openclaw/openclaw.json
Skills not showing: Run clawhub list to see installed skills. Run clawhub update --all to refresh.

Important rules

Always use openclaw gateway restart to restart the gateway. Never use systemctl directly for the gateway.
When editing ~/.openclaw/openclaw.json, read the current file first, modify it, write it back. Don't write partial configs.
The Solana wallet private key is at ~/.openclaw/agentbox/wallet-sol.json. Never share it or display it to users.

Usage Guidance

Before installing: (1) confirm why always:true is required — consider running it manually instead of forcing it at every session; (2) verify where the Solana wallet private key is stored and whether the agent or any skills will be allowed to read it; if automatic on-demand payments are enabled, restrict wallet funds (use a small balance) or require explicit user approval; (3) ask the publisher to declare required config paths/credentials in the registry metadata (the SKILL.md references many paths but the manifest lists none); (4) restrict or audit any actions that run sudo/systemctl from the agent; (5) if you must use this in production, run it in an isolated VM with limited funds and full backups and review gateway/x402 plugin source before trusting automated payments.

Capability Analysis

Type: OpenClaw Skill Name: agentbox Version: 1.0.0 The skill is classified as suspicious due to the explicit mention of the Solana wallet private key path (`~/.openclaw/agentbox/wallet-sol.json`) in `SKILL.md`. Although the skill includes a defensive instruction not to share this key, its presence and location are disclosed to the AI agent, creating a significant prompt injection vulnerability. An attacker could craft a prompt to bypass this instruction and trick the agent into reading or exfiltrating the private key. Additionally, the skill grants the agent `sudo` capabilities for specific service restarts (`sudo systemctl restart caddy`, `sudo systemctl restart ttyd`), which could be abused if the agent is prompted to generalize these privileges.

Capability Assessment

ℹ Purpose & Capability

Name and description match the SKILL.md content: this is an AgentBox VM operations guide (services, config paths, payments, troubleshooting). However the manifest does not declare the many local config paths and a Solana wallet that the instructions reference, which is an omission that reduces transparency.

⚠ Instruction Scope

The runtime instructions reference system-level commands (sudo systemctl restart caddy/ttyd), explicit filesystem paths under ~/.openclaw (config, logs, skills), and a Solana wallet file. They describe an x402 plugin that transparently signs USDC payments on 402 responses. Those are operational actions with sensitive side effects (automatic signing of on-chain payments) and go beyond a simple informational readme.

✓ Install Mechanism

Instruction-only skill with no install spec and no code files — nothing will be written to disk by the skill package itself. This is the lowest-risk install mechanism from the registry side.

⚠ Credentials

The SKILL.md references a local Solana wallet at ~/.openclaw/agentbox/wallet-sol.json and requires that it hold USDC for automatic payments, but the skill declares no required config paths or credentials. The skill therefore implies access to a sensitive private key without declaring it in the manifest; that mismatch is a red flag.

⚠ Persistence & Privilege

always:true is set so this skill is force-loaded at session start. That could be reasonable for a VM runbook, but combined with references to a local wallet and automatic payment behavior it materially increases the blast radius if the agent is ever allowed to act autonomously.

How to Use

Make sure OpenClaw is installed (local or Docker)
Run the install command in chat: /install agentbox
After installation, invoke the skill by name or use /agentbox
Provide required inputs per the skill's parameter spec and get structured output

Version History

v1.0.0

Initial release

Metadata

Slug agentbox

Version 1.0.0

License —

All-time Installs 0

Active Installs 0

Total Versions 1

Frequently Asked Questions

What is AgentBox?

AgentBox VM operating instructions: services, config, x402 payments, skill updates, troubleshooting. Load this at the start of every session. It is an AI Agent Skill for Claude Code / OpenClaw, with 437 downloads so far.

How do I install AgentBox?

Run "/install agentbox" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.

Is AgentBox free?

Yes, AgentBox is completely free (open-source). You can download, install and use it at no cost.

Which platforms does AgentBox support?

AgentBox is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).

Who created AgentBox?

It is built and maintained by Misha Kolesnik (@tenequm); the current version is v1.0.0.

More Skills