← 返回 Skills 市场

confidential-agentic-payment-stack

Name: confidential-agentic-payment-stack
Author: billynothack

作者 Bilal EL ALAMY · GitHub ↗ · v1.0.0 · MIT-0

cross-platform ⚠ suspicious

197

总下载

当前安装

版本数

在 OpenClaw 中安装

/install confidential-agentic-payment-stack

功能描述

FHE-encrypted x402 payments for OpenClaw agents. Use when the agent needs to make private on-chain payments, wrap/unwrap encrypted tokens, manage escrow jobs...

使用说明 (SKILL.md)

FHE x402 Payment Skill

Private, encrypted payments for autonomous agents on Ethereum using Zama's Fully Homomorphic Encryption (fhEVM). All payment amounts are encrypted on-chain — only the payer and payee can see them.

Quick Start

Set a wallet and RPC, then run any command:

# Minimal setup (local dev)
export USER_PRIVATE_KEY=0x...
export RPC_URL=https://sepolia.infura.io/v3/YOUR_KEY

# Check wallet info
run info

# Wrap 10 USDC into encrypted cUSDC
run wrap --amount 10

# Send 1 encrypted cUSDC
run pay --to 0xRecipient --amount 1

# Check balance (with optional decrypt)
run balance
run balance --decrypt true

Commands

Token Operations

Command	Description	Required Args
`wrap`	Wrap USDC into encrypted cUSDC (ERC-7984)	`--amount`
`unwrap`	Initiate unwrap of cUSDC back to USDC (step 1 of 2)	`--amount`
`finalize-unwrap`	Complete unwrap via KMS decryption proof	`--handle` (recommended) or `--requestId --cleartextAmount --proof` (legacy)
`pay`	Send encrypted cUSDC via verifier relay	`--to --amount`
`balance`	Check USDC + cUSDC balances	Optional: `--decrypt true`, `--of 0xAddress`
`info`	Display wallet, network, and contract addresses	(none)

Escrow (Agentic Commerce Protocol — ERC-8183)

Command	Description	Required Args
`create-job`	Create an escrow job with provider + evaluator	`--provider --evaluator --expiry --description` Optional: `--hook`
`fund-job`	Encrypt budget + fund a job (3-step TX)	`--jobId --amount`
`complete-job`	Approve or reject a submitted job	`--jobId --action` (approve/reject) Optional: `--reason`

Identity & Reputation (ERC-8004)

Command	Description	Required Args
`register-agent`	Mint an agent identity NFT	`--uri`
`give-feedback`	Submit proof-linked reputation feedback	`--agentId --score --nonce` Optional: `--tag1 --tag2 --endpoint --feedbackURI --feedbackHash`

Delegation (FHE Viewing Keys)

Command	Description	Required Args
`grant-view`	Grant read access to your encrypted balance	`--delegate` Optional: `--hours --permanent --contract`
`revoke-view`	Revoke a delegate's view access	`--delegate`
`view-as`	Read another agent's balance via delegation	`--delegator`

Demo Orchestrators

Command	Description	Required Args
`research-and-visualize`	Chain 3 paid API calls (search + LLM + image)	`--query`
`review-and-rate`	Buy a code review + submit feedback	`--code` Optional: `--language --score`

Wallet Modes

Set WALLET_MODE to choose explicitly, or omit for auto-detection (DFNS > user key):

Mode	Env Var	Best For
`user`	`USER_PRIVATE_KEY`	Local development, testing
`dfns`	`DFNS_WALLET_ID` + `DFNS_AUTH_TOKEN` + `DFNS_CREDENTIAL_ID` + (`DFNS_CREDENTIAL_PRIVATE_KEY` or `DFNS_PRIVATE_KEY_PATH`)	Unattended MPC agents
`ledger-bridge`	`LEDGER_BRIDGE_URL` + `LEDGER_BRIDGE_TOKEN`	Supervised hardware wallet

Environment Variables

Required

Variable	Description
`RPC_URL`	Ethereum RPC endpoint (default: Sepolia public node)
`USER_PRIVATE_KEY` or `DFNS_WALLET_ID`	At least one wallet source

Optional

Variable	Description
`CHAIN`	`mainnet` or `sepolia` (auto-detected from RPC_URL)
`CUSDC_ADDRESS`	Override cUSDC token address
`VERIFIER_ADDRESS`	Override X402PaymentVerifier address
`ESCROW_ADDRESS`	Override AgenticCommerceProtocol address
`IDENTITY_ADDRESS`	Override AgentIdentityRegistry address
`REPUTATION_ADDRESS`	Override AgentReputationRegistry address

All contract addresses auto-fill for Sepolia when RPC_URL points to chain ID 11155111.

How It Works

Encrypted Payments: Uses Zama's fhEVM to encrypt USDC into cUSDC (ERC-7984). All transfers are confidential — amounts are FHE-encrypted on-chain.
x402 Protocol: Implements the HTTP 402 payment flow — servers return 402 Payment Required, the agent encrypts and pays, then retries with a payment proof header.
Escrow: The AgenticCommerceProtocol (ERC-8183) holds encrypted budgets in escrow. Jobs flow through: create → setBudget → fund → submit → complete/reject.
Identity: Agents register as ERC-721 NFTs with EIP-712 wallet linking and on-chain metadata.
Reputation: Proof-of-payment feedback system prevents sybil attacks on agent ratings.

Deployed Contracts (Sepolia)

Contract	Address
cUSDC (ERC-7984)	`0x7c5BF43B851c1dff1a4feE8dB225b87f2C223639`
X402PaymentVerifier	`0xD46E80E1d37116B44c7Bfd845A110FCbB93d3E9F`
AgenticCommerceProtocol	`0xECD7a2382A5F0e3b6A7b76536e4CAE11215Cc695`
AgentIdentityRegistry	`0x36666464daa16442Fc1d901acfC9419f11407741`
AgentReputationRegistry	`0x1649d762Ee62f194D92B93510b8f10a501cE9fD5`

Output Format

All commands return JSON strings: { "ok": true, ... } on success, { "ok": false, "error": "..." } on failure. Commands never throw — errors are returned as JSON.

安全使用建议

This skill is coherent with its stated purpose, but it requires a signing credential (USER_PRIVATE_KEY) that can create and send real on‑chain transactions — installing and invoking the skill allows it to spend funds from the provided key. It also sends request bodies (search queries, LLM prompts, code for review, images) to external endpoints which you control via environment variables or which default to localhost; verify and set those endpoints explicitly. Recommendations before installing: 1) Use a low‑value or testnet key (Sepolia) or hardware/MPC (DFNS/Ledger) rather than your primary hot wallet. 2) Audit or pin the runtime dependencies the environment will install (the code imports Zama FHE SDKs and ethers). 3) Explicitly set SEARCH_SERVER_URL / LLM_SERVER_URL / IMAGE_SERVER_URL / CODE_REVIEW_URL to trusted endpoints (or disable demo orchestrators) if you will run commands that send data. 4) If you need higher assurance, request the omitted _wallet.ts and dependency manifests reviewed to confirm there are no hidden network callbacks or file reads beyond what was inspected.

功能分析

Type: OpenClaw Skill Name: confidential-agentic-payment-stack Version: 1.0.0 The skill bundle provides a comprehensive implementation for FHE-encrypted payments and escrow services using Zama's fhEVM on Ethereum. It includes well-structured scripts for token wrapping (ERC-7984), confidential transfers, and agent identity/reputation management (ERC-8004/8183). While the skill handles sensitive credentials like private keys and MPC tokens (DFNS), its behavior is entirely consistent with its stated purpose of enabling private agentic commerce, and no indicators of malicious intent, obfuscation, or unauthorized data exfiltration were found across the code or instructions.

能力标签

cryptorequires-walletcan-make-purchasescan-sign-transactions

能力评估

✓ Purpose & Capability

The name/description (FHE-encrypted x402 payments, wrap/unwrap, escrow, identity, reputation) match the code and commands. Requiring an Ethereum RPC and a signing credential (USER_PRIVATE_KEY or DFNS) is appropriate. Declared required binary (node) makes sense for the TypeScript/Node scripts.

ℹ Instruction Scope

SKILL.md and the scripts focus on on‑chain payments, delegation, and paid API flows. The instructions and code will sign transactions and EIP‑712 messages and will POST request bodies (e.g., code for review) to external services — this is expected behavior but is data‑sending beyond purely on‑chain operations. The code also consults several optional environment variables (SEARCH_SERVER_URL, LLM_SERVER_URL, IMAGE_SERVER_URL, CODE_REVIEW_URL, CODE_REVIEW_AGENT_ID, MOCK_PAYWALL, etc.) which are not all enumerated under 'required' but are used at runtime as defaults; verify these before running.

✓ Install Mechanism

No install spec is provided (instruction-only metadata), and code files are embedded in the skill. There are no remote-download install steps in the provided metadata. Running the skill will rely on the runtime environment's Node toolchain and installed dependencies (the code imports external SDKs), so ensure your execution environment packages are trusted.

⚠ Credentials

The primary credential requested is USER_PRIVATE_KEY which is proportionate to a wallet-driven payment tool; however, this is a powerful secret (can sign transactions and spend funds). The skill also supports DFNS and Ledger modes (other env vars referenced). Several optional env vars control external service endpoints and agent IDs; those are legitimate but can cause data to be POSTed externally (e.g., sending code to a review service). Only provide wallet credentials you are prepared to let the skill use, and prefer hardware or MPC modes for high-value keys.

✓ Persistence & Privilege

The skill does not request always:true or other elevated platform privileges. Model invocation is allowed (default) which is expected for agentic skills. The skill does not appear to modify other skills or global agent configs.

如何使用

确保已安装 OpenClaw（本地或 Docker 部署）
在对话框中输入安装命令：/install confidential-agentic-payment-stack
安装完成后，直接呼叫该 Skill 的名称或使用 /confidential-agentic-payment-stack 触发
根据 Skill 的参数说明提供必要输入，即可获得结构化输出

版本历史

v1.0.0

This is the V1 of the confidential-agentic-payment-stack. It allows agents to interact with Zama's Fully Homomorphic Encryption technology which permit confidentiality on top of existing blockchains. Agents can then manipulate "Confidential" tokens to make their crypto transaction with a) Website (x402 protocol); b) Agents (ERC-8183) & c) Humans fully confidential. Balances & transaction amounts remain fully confidential while offering compliance compatibility. Those skills also allow agents to create an identity and give feedbacks on other agents depeding on the commerce they do with other entities.

元数据

Slug confidential-agentic-payment-stack

版本 1.0.0

许可证 MIT-0

累计安装 0

当前安装数 0

历史版本数 1

常见问题