← 返回 Skills 市场

Etherscan Mcp Skill

Name: Etherscan Mcp Skill
Author: jolestar

作者 jolestar · GitHub ↗ · v1.0.0

cross-platform ✓ 安全检测通过

273

总下载

当前安装

版本数

在 OpenClaw 中安装

/install etherscan-mcp-skill

功能描述

Use Etherscan MCP through UXC for address balance checks, token holder analysis, transaction inspection, and contract lookup tasks. Use when tasks need Ether...

使用说明 (SKILL.md)

Etherscan MCP Skill

Use this skill to run Etherscan MCP operations through uxc.

Reuse the uxc skill for shared protocol discovery, output parsing, and generic auth/binding flows.

Prerequisites

uxc is installed and available in PATH.
Network access to https://mcp.etherscan.io/mcp.
An Etherscan API key is available for authenticated calls.

Core Workflow

Confirm endpoint and protocol with help-first probing:
- uxc https://mcp.etherscan.io/mcp -h
- expected unauthenticated behavior today: 401 Unauthorized
Configure credential/binding for repeatable auth:
- uxc auth credential set etherscan-mcp --auth-type bearer --secret-env ETHERSCAN_API_KEY
- uxc auth credential set etherscan-mcp --auth-type bearer --secret-op op://Engineering/etherscan/api-key
- uxc auth binding add --id etherscan-mcp --host mcp.etherscan.io --path-prefix /mcp --scheme https --credential etherscan-mcp --priority 100
Use fixed link command by default:
- command -v etherscan-mcp-cli
- If missing, create it: uxc link etherscan-mcp-cli https://mcp.etherscan.io/mcp
- etherscan-mcp-cli -h
Inspect operation schema before execution:
- etherscan-mcp-cli balance -h
- etherscan-mcp-cli tokenTopHolders -h
- etherscan-mcp-cli getContractAbi -h
- etherscan-mcp-cli transaction -h
Prefer read operations first, then any workflow that could trigger heavy data pulls or follow-up automation.

Capability Map

Address investigation:
- balance
- tokenHoldings
- fundedBy
- getAddressMetadata
Token holder analysis:
- balanceERC20
- balanceERC20Historical
- tokenTopHolders
- getTokenInfo
Transaction investigation:
- txList
- internalTxsByAddress
- erc20Transfers
- erc721Transfers
- erc1155Transfers
- transaction
- checkTransaction
Contract research:
- getContractAbi
- getContractSourceCode
- getContractCreation
Verification:
- verifySourceCode
- checkVerifyStatus

Inspect etherscan-mcp-cli -h after auth setup for the current full tool list. Etherscan can expand MCP tools independently of this wrapper skill.

Recommended Usage Pattern

Start from a read-only investigation goal:
- balance or holdings for an address
- holder concentration for a token
- transaction inspection for a hash
- source/metadata lookup for a contract
Run -h on the specific tool before the first real call.
Prefer one chain/address/token at a time before broadening the scope.
Parse the JSON envelope first, then inspect data.

Guardrails

Keep automation on JSON output envelope; do not rely on --text.
Parse stable fields first: ok, kind, protocol, data, error.
Use etherscan-mcp-cli as default command path.
etherscan-mcp-cli \x3Coperation> ... is equivalent to uxc https://mcp.etherscan.io/mcp \x3Coperation> ....
If unauthenticated probe or runtime call returns 401 Unauthorized:
- confirm auth binding matches endpoint with uxc auth binding match https://mcp.etherscan.io/mcp
- confirm credential shape with uxc auth credential info etherscan-mcp
- reset credential as bearer if needed: uxc auth credential set etherscan-mcp --auth-type bearer --secret-env ETHERSCAN_API_KEY
Use key=value only for simple scalar inputs.
Prefer positional JSON when an operation accepts nested objects, arrays, or optional flags that may evolve.
Do not assume tool argument names from memory; inspect \x3Coperation> -h first because Etherscan may revise MCP schemas independently of this skill.
Some MCP tools are tier-gated by Etherscan plan. Today getTokenInfo can return NOTOK with an API Pro upgrade message on non-Pro keys.
Treat verifySourceCode as a write-like action requiring explicit user confirmation.

References

Invocation patterns:
- references/usage-patterns.md

安全使用建议

This skill appears to do what it says: it wraps Etherscan MCP calls via 'uxc' and a linked CLI. Before installing, ensure you: (1) only provide an ETHERSCAN_API_KEY scoped for read operations if possible; (2) confirm the registry metadata omission (the SKILL.md expects ETHERSCAN_API_KEY even though the registry lists none) so you know which secret to supply; (3) avoid pointing the skill at a broad organizational secret path unless you intend to share that specific API key (the op:// example will read from your secret manager); (4) install/verify 'uxc' and the linked command locally and review 'etherscan-mcp-cli -h' as advised; and (5) treat verifySourceCode operations as write-like and require explicit user confirmation. If you want higher assurance, request the publisher to declare the required env var/primary credential in the skill metadata and confirm there are no additional, hidden network endpoints.

功能分析

Type: OpenClaw Skill Name: etherscan-mcp-skill Version: 1.0.0 The skill bundle provides a structured interface for the OpenClaw agent to interact with Etherscan's Model Context Protocol (MCP) endpoint via the 'uxc' CLI tool. It includes comprehensive instructions for authentication setup, command aliasing (etherscan-mcp-cli), and safe 'help-first' discovery patterns for blockchain data retrieval. The validation script (scripts/validate.sh) and usage documentation (references/usage-patterns.md) reinforce legitimate usage and guardrails, with no evidence of malicious intent, data exfiltration, or unauthorized execution.

能力评估

✓ Purpose & Capability

Name/description and runtime instructions align: the skill is a thin instruction wrapper around the Etherscan MCP endpoint accessed via the 'uxc' helper and a linked CLI ('etherscan-mcp-cli'). All requested capabilities (balance, token holders, tx inspection, contract lookup, verify) map to Etherscan MCP functionality. Minor mismatch: registry metadata lists no required env vars, but SKILL.md clearly documents using ETHERSCAN_API_KEY for bearer auth (this is expected for the capability).

✓ Instruction Scope

SKILL.md confines runtime actions to probing and calling the Etherscan MCP endpoint (https://mcp.etherscan.io/mcp) using 'uxc' and the linked CLI, and advises help-first and read-first workflows. It does not instruct reading arbitrary host files or exfiltrating data. It does include examples that reference a secret store reference (op://Engineering/etherscan/api-key) and the environment variable ETHERSCAN_API_KEY for credential setup; these are relevant to auth but mean the agent will be instructed to use secrets if provided.

✓ Install Mechanism

No install spec is present (instruction-only skill), which is low risk. The only code file is a repository validation script (scripts/validate.sh) that performs local checks (uses 'rg'); it does not perform downloads or write network-executed artifacts.

ℹ Credentials

The skill legitimately needs an Etherscan API key (ETHERSCAN_API_KEY) for authenticated calls; requesting that key is proportionate. Registry metadata does not list the env var or primary credential, which is an implementation/documentation mismatch the user should be aware of. SKILL.md also shows optional secret manager usage (op://...), which — if used — grants the skill access to whatever secret store entry you point it to; ensure the referenced secret path is appropriate and limited to an Etherscan API key.

✓ Persistence & Privilege

The skill does not request permanent/always-included status (always:false), does not modify other skills or system-wide configs, and contains no code that persists credentials or elevates privileges. Autonomous invocation is allowed by default (disable-model-invocation:false), which is normal for skills and not in itself a red flag here.

如何使用

确保已安装 OpenClaw（本地或 Docker 部署）
在对话框中输入安装命令：/install etherscan-mcp-skill
安装完成后，直接呼叫该 Skill 的名称或使用 /etherscan-mcp-skill 触发
根据 Skill 的参数说明提供必要输入，即可获得结构化输出

版本历史

v1.0.0

Initial release of etherscan-mcp-skill. - Integrates Etherscan MCP operations into UXC for onchain investigation. - Supports address balance checks, token holder analysis, transaction inspection, and contract lookup. - Includes help-first schema inspection, bearer-key authentication, and tier-aware handling. - Provides workflow recommendations, guardrails, and troubleshooting steps. - Lists all supported Etherscan MCP operations and usage patterns.

元数据

Slug etherscan-mcp-skill

版本 1.0.0

许可证 —

累计安装 2

当前安装数 2

历史版本数 1

常见问题