← 返回 Skills 市场
338
总下载
0
收藏
0
当前安装
4
版本数
在 OpenClaw 中安装
/install gate-dex-wallet
功能描述
Gate DEX wallet account management. Handles authentication (Google OAuth and Gate OAuth), token balance queries, wallet address retrieval, transaction and sw...
使用说明 (SKILL.md)
Gate DEX Wallet
Pure Routing Layer — This SKILL.md is a lightweight router. All sub-module details live in
references/.
General Rules
⚠️ STOP — You MUST read and strictly follow the shared runtime rules before proceeding. Do NOT select or call any tool until all rules are read. These rules have the highest priority. → Read gate-runtime-rules.md
Signing gate — terminal tx-checkin (mandatory)
Before any MCP call to dex_wallet_sign_transaction, dex_wallet_sign_message, or dex_tx_x402_fetch:
- User must pass the existing confirmation gates (preview / message text / payment intent) for that operation.
- Agent MUST run the terminal
tx-checkinflow in references/tx-checkin.md and treat success as a hard prerequisite. Do not skip because a prior operation did not require it or no error was returned. Use the prebuilt check-in binaries undertools/tx-checkin/bin/— end users do not compile (go build/go runnot required). Resolve the CLI from this skill’sskill_root: Linux →tx-checkin-linux-amd64, macOS →tx-checkin-darwin-universal, Windows →tx-checkin-windows-amd64.exe— users need not setTX_CHECKIN(optional override only); see references/tx-checkin.md. - After
dex_tx_transfer_preview, check-in must use the preview fieldtxBundleonly: write that string to a file and runtx-checkin -tx-bundle-file— do not assemble txbundle JSON fromunsigned_tx_hexor other fields (see references/tx-checkin.md). - x402 (
dex_tx_x402_fetch): Always complete terminal check-in before the firstdex_tx_x402_fetchcall in that payment flow. Do not calldex_tx_x402_fetchfirst to probe 402 or “see if GV needs check-in.” After successful check-in, passcheckin_tokenfrom stdout JSON intodex_tx_x402_fetchwhen the tool exposes that parameter; use-intent/-message(or documented body) for check-in per references/x402.md and references/tx-checkin.md. - Other single-step MCP tools that sign internally: same terminal check-in immediately before the tool when the gateway requires it; follow backend docs for
checkin_token/ intent payload.
Applicable Scenarios
Use this skill when the user wants to manage their on-chain wallet account, identity, or assets:
- Authenticate or manage sessions (login via Google or Gate OAuth, logout)
- Query token balances, total portfolio value, or wallet addresses
- View transaction history or past swap records
- Transfer or send tokens to an address (single or batch); mandatory terminal tx-checkin before any signing (references/tx-checkin.md)
- Withdraw or cash out on-chain to their Gate Exchange account (deposit address resolved for their UID; not CEX-internal balance moves from this skill)
- Pay for HTTP 402 resources via x402 protocol (EVM exact/upto, Solana exact/upto); terminal tx-checkin before
dex_tx_x402_fetch(references/x402.md, references/tx-checkin.md) - Interact with DApps (connect wallet, sign messages, approve tokens, call contracts)
- Use the gate-wallet CLI tool for any of the above
- Detect or configure MCP Server connectivity
Capability Boundaries
| Supported | Not Supported (route elsewhere) |
|---|---|
| Authentication & session management | Token price / K-line queries -> gate-dex-market |
| Balance & address queries | Token swap execution -> gate-dex-trade |
| Transaction & swap history | Token security audits -> gate-dex-market |
| Token transfers (EVM + Solana); on-chain withdraw to Gate Exchange (deposit address flow) | |
| x402 payment (EVM exact/upto + Solana exact/upto) | |
| DApp interactions & approvals | |
| CLI dual-channel operations |
Module Routing
Route to the corresponding sub-module based on user intent:
| User Intent | Target |
|---|---|
| Login, logout, sign in, sign out, token expired, session expired, OAuth, Google login, Gate login, authenticate, re-login, switch account, "I can't access my wallet", "not logged in" | references/auth.md |
| Check balance, total assets, portfolio value, wallet address, my address, how much do I have, show my tokens, tx history, transaction history, swap history, past transactions, "what do I own", "how many ETH", "list my coins", "show holdings" | references/asset-query.md |
| Withdraw to Gate Exchange, cash out to my Gate account, send funds to the exchange deposit address, move coins from wallet to Gate (on-chain deposit), bind or rebind Gate UID for withdraw | references/withdraw.md |
| Transfer, send tokens, send to address, batch transfer, "send 1 ETH to 0x...", "transfer USDT", "move tokens", "pay someone", "send crypto to a friend" (arbitrary or known on-chain address — not exchange deposit resolution) | references/transfer.md + references/tx-checkin.md before sign |
Any signing: before dex_wallet_sign_transaction / dex_wallet_sign_message; checkin_token; "run check-in"; terminal tx-checkin |
references/tx-checkin.md (read before signing) |
| 402 payment, x402 pay, payment required, pay for API, pay for URL, "fetch and pay", "call this URL and pay", "paid endpoint", "pay for access", "HTTP 402", Permit2 payment, upto payment | references/tx-checkin.md then references/x402.md (check-in before dex_tx_x402_fetch) |
| DApp connect, connect wallet, sign message, approve, revoke approval, contract call, EIP-712, Permit, personal_sign, "interact with Uniswap", "add liquidity", "stake on Lido", "mint NFT", "sign for DApp login", authorize contract | references/dapp.md + references/tx-checkin.md before every sign |
| gate-wallet CLI, command line, terminal, openapi-swap, hybrid swap, "use CLI", "run command", "gate-wallet balance", script automation, npm gate-wallet | references/cli.md |
MCP Server Connection Detection
Before the first MCP tool call in a session, perform one connection probe:
- Discover: Scan configured MCP servers for tools
dex_wallet_get_token_list,dex_tx_quote, anddex_tx_swap. - Identify: Accept flexible server names (gate-wallet, gate-dex, dex, wallet, user-gate-wallet, or any custom name).
- Verify:
CallMcpTool(server="\x3Cid>", toolName="dex_chain_config", arguments={chain: "eth"}).
| Result | Action |
|---|---|
| Success | Record server identifier; use for all subsequent calls this session |
| Failure | Display setup guide below (at most once per session); re-detect next session |
OpenClaw Platform Detection
When the OpenClaw/mcporter platform is detected, route MCP calls through mcporter:
CallMcpTool(server="mcporter", toolName="call_tool", arguments={
server: "\x3Cgate-dex-server>",
tool: "\x3Ctool_name>",
arguments: { ...params }
})
Setup Guide (shown once on detection failure)
Gate DEX MCP Server:
URL: https://api.gatemcp.ai/mcp/dex
Type: HTTP
Cursor: Settings -> MCP -> Add server, or edit ~/.cursor/mcp.json
Claude Code: claude mcp add --transport http gate-dex --scope project https://api.gatemcp.ai/mcp/dex
Codex CLI: codex mcp add gate-dex --transport http --url https://api.gatemcp.ai/mcp/dex
Runtime Error Handling
| Error Type | Keywords | Action |
|---|---|---|
| MCP Server not configured | server not found, unknown server |
Show setup guide |
| Remote service unreachable | connection refused, timeout, DNS error |
Prompt to check server status and network |
| Authentication failure | 400, 401, unauthorized |
Follow §3 of gate-runtime-rules.md |
Follow-up Routing
After completing an operation, proactively suggest 2-4 relevant next actions to the user (see each module's "Post-XXX Suggestions" section for templates). Then route based on the user's response:
| User Intent After Operation | Target |
|---|---|
| View token prices, K-line charts, market cap, trading volume | gate-dex-market |
| Run a token security audit, check if token is safe | gate-dex-market |
| Transfer or send tokens to an arbitrary on-chain address | references/transfer.md |
| Withdraw or cash out on-chain to Gate Exchange | references/withdraw.md |
| Swap, exchange, buy, sell, convert tokens on DEX | gate-dex-trade |
| Pay for a 402 resource, x402 payment | references/tx-checkin.md then references/x402.md |
| Interact with a DApp, connect wallet, sign, approve | references/dapp.md |
| Mandatory tx-checkin in terminal before any signing, checkin_token | references/tx-checkin.md |
| Login, re-login, fix expired auth, switch account | references/auth.md |
| Use CLI commands, gate-wallet terminal operations | references/cli.md |
| Check balance, view assets, transaction history | references/asset-query.md |
NOT This Skill (Common Misroutes)
These intents should NOT trigger this skill:
| User Intent | Correct Skill |
|---|---|
| "What is the price of ETH?" / "Show BTC chart" / "Token rankings" | gate-dex-market |
| "Swap ETH for USDT" / "Buy SOL" / "Exchange tokens" / "DEX trade" | gate-dex-trade |
| "Is this token safe?" / "Audit contract 0x..." / "Honeypot check" | gate-dex-market |
| "Show top gainers" / "New token listings" / "Market overview" | gate-dex-market |
Supported Chains
EVM: eth, bsc, polygon, arbitrum, optimism, avax, base | Non-EVM: sol
Security Rules
- Authentication first: Verify
mcp_tokenvalidity before all operations; on failure follow §3 of gate-runtime-rules.md. - Token confidentiality: Never display
mcp_tokenin plaintext; use placeholders like\x3Cmcp_token>. - MCP Server errors: Display all MCP Server error messages to users transparently — never hide or modify them.
安全使用建议
This package looks like a legitimately scoped wallet skill, but several red flags deserve attention before you run anything:
- Missing prebuilt binaries: SKILL.md requires prebuilt tx-checkin binaries under tools/tx-checkin/bin/, but the manifest you provided doesn't include them. Confirm the presence and provenance of those binaries before running the skill — the runtime requires them and they are central to signing flows.
- External gateway behavior: The tx-checkin flow posts txBundle/intent data to an external gateway (multiple hostnames appear in docs/changelog). That will transmit transaction details (and may return checkin tokens). Verify the gateway's official ownership and privacy policy; if you don't trust that endpoint, do not run tx-checkin or send txBundle data.
- Installer side-effects: install.sh and install_cli.sh will modify AI platform config files, copy skill folders into user platform directories, append to routing files, and may run npm install -g gate-wallet-cli. Review the scripts line-by-line, back up files like ~/.cursor/mcp.json, ~/.codex/config.toml, CLAUDE.md and AGENTS.md, and prefer manual configuration over running the automated installer.
- Secrets storage: The CLI installer will optionally write OpenAPI keys to ~/.gate-dex-openapi/config.json. If you provide credentials, ensure file permissions and storage meet your security policy.
Recommendations to reduce risk:
1) Inspect or obtain the missing tx-checkin binaries from a trusted, verifiable release (signed or from an official Gate repo) before use.
2) Verify the gateway endpoints' ownership and TLS certs; prefer an organization-controlled gateway you trust.
3) Run the installers in a controlled environment or step through manual configuration instead of running the scripts wholesale.
4) If unsure, do not provide API/secret keys, and do not run global npm installs until you vet gate-wallet-cli source.
I assessed this as 'suspicious' (medium confidence) because the skill's purpose fits the artifacts provided but key runtime pieces are missing or inconsistent and the installers perform invasive configuration changes and will transmit transaction data to external services. Additional evidence (included, signed tx-checkin binaries and a clear, single official gateway URL) would raise confidence toward benign.
功能分析
Type: OpenClaw Skill
Name: gate-dex-wallet
Version: 1.0.3
The gate-dex-wallet skill bundle provides comprehensive Web3 wallet functionality, including authentication, asset transfers, and DApp interactions. It exhibits several high-risk behaviors: the installation scripts (`install.sh`, `install_cli.sh`) perform global system modifications via `npm install -g`, prompt for sensitive OpenAPI credentials, and modify AI platform configuration files. Most notably, the instructions in `SKILL.md` and `references/tx-checkin.md` mandate that the AI agent execute prebuilt, opaque binaries (`tx-checkin`) from the `tools/tx-checkin/bin/` directory before any signing operation. While these actions are consistent with the stated purpose of a custodial wallet integration for the Gate.io ecosystem, the requirement to run local binaries and the handling of OAuth tokens represent a significant security risk and a broad attack surface, warranting a suspicious classification.
能力标签
能力评估
Purpose & Capability
The name and description (wallet account management, auth, balances, transfers, x402 payments, DApp interactions, CLI) align with the included documentation and installer scripts. However SKILL.md mandates use of prebuilt terminal 'tx-checkin' binaries under tools/tx-checkin/bin/ (users 'do not compile'), yet the provided manifest of files does not include a tools/ directory or those binaries. That mismatch (instructions require a binary that isn't present in the package) is an inconsistency worth attention.
Instruction Scope
SKILL.md requires executing a terminal 'tx-checkin' flow and explicitly instructs the agent to write user preview data (txBundle) to a file and run the prebuilt binary which performs a POST to a gateway. That sends transaction-related data to an external web API (several different gateway hosts appear in changelog/README). The instruction to always perform a terminal check-in and to pass checkin_token to MCP tools means sensitive transaction details and tokens will be transmitted externally; combined with the missing binaries and remote rules reference, this increases risk and scope creep beyond purely local queries.
Install Mechanism
There is no formal install spec in the registry, but two provided shell installers (install.sh and install_cli.sh) perform real filesystem and platform configuration changes: they write/append platform config files (~/.cursor/mcp.json, ~/.codex/config.toml), create or append CLAUDE.md/AGENTS.md, copy skill directories into ~/.cursor/skills, and run npm install -g gate-wallet-cli. Global npm installation and automated edits to existing platform files is a moderate-risk behavior — expected for a CLI/skill installer but invasive; review scripts before running. The package does not auto-download arbitrary archives from unknown hosts, but it will run npm and could call external CLIs if present.
Credentials
The skill declares no required env vars in registry metadata, which fits a documentation/routing skill. In practice the docs and installers reference optional overrides (TX_CHECKIN, TX_CHECKIN_GATEWAY_BASE) and the CLI installer prompts the user to save OpenAPI API/Secret to ~/.gate-dex-openapi/config.json. Requesting and storing API keys locally is reasonable for hybrid CLI flows, but the skill also documents gateway endpoints used by the tx-checkin binary — environment and credential access is moderate and should be limited to what the user explicitly consents to.
Persistence & Privilege
The installers modify other tools' configuration files (Cursor/Claude/Codex/OpenClaw configs), append routing docs (CLAUDE.md / AGENTS.md), copy skill directories into platform skill folders, and may install a global npm CLI. Those are persistent, cross-tool changes. While 'always' is false and the skill does not auto-enable itself, the installer scripts request broad filesystem and platform configuration changes that require explicit user attention and backup; altering other skills' routing files is particularly sensitive.
如何使用
- 确保已安装 OpenClaw(本地或 Docker 部署)
- 在对话框中输入安装命令:
/install gate-dex-wallet - 安装完成后,直接呼叫该 Skill 的名称或使用
/gate-dex-wallet触发 - 根据 Skill 的参数说明提供必要输入,即可获得结构化输出
版本历史
v1.0.3
Gate DEX Wallet 1.0.3
- Introduced **mandatory terminal tx-checkin** before all wallet signing actions, including transaction signatures and x402 payments.
- Added new documentation: `references/tx-checkin.md` detailing check-in requirements and CLI usage (prebuilt binaries, no compilation needed).
- Updated routing and module documentation to reflect tx-checkin as a hard prerequisite for signing and x402 flows.
- Aligned onboarding and error handling flows to updated requirements; removed obsolete files (`gate-runtime-rules.md`, `gate-skills-disambiguation.md`).
- Expanded details on CLI location, OS variants, and check-in integration within the skill.
v1.0.2
**Changelog for gate-dex-wallet v1.0.2**
- Added new MCP mode specification, with authoritative execution rules moved to references/mcp.md.
- Refined and clarified authentication requirements: no API key, but OAuth mcp_token required.
- Improved applicable scenarios and triggers; updated description for stricter routing.
- Updated initial MCP tool discovery set (`dex_wallet_get_token_list`, `dex_tx_transfer_preview`, `dex_tx_send_raw_transaction`).
- Enhanced internal documentation structure and clarified boundaries for routing and module responsibilities.
v1.0.1
**Skill 1.0.1 Changelog**
- Major skill refactor: SKILL.md now acts as a pure router, delegating all operation specs to sub-module reference files.
- Expanded and clarified capability boundaries—strictly routes market data and swap intents to dedicated skills.
- Added support and routing for x402 (HTTP 402 Payment Required) payments and on-chain withdrawals to Gate Exchange (deposit address/UID binding).
- New submodules: references/asset-query.md, references/withdraw.md, references/x402.md, plus detailed runtime rules and disambiguation documentation.
- Introduced strict, session-level MCP server detection—adopts flexible server naming and OpenClaw/mcporter passthrough support.
- Now provides follow-up suggestions after each operation, routing next steps contextually.
- All runtime/operational rules consolidated in shared gate-runtime-rules.md.
v1.0.0
Gate DEX Wallet v2026.3.12-1 — Initial release with comprehensive wallet functions.
- Unified wallet entry point for authentication, asset queries, transfers, DApp interactions, and CLI operations across five major modules.
- Intelligent routing by user intent to dedicated operation guides (login, asset management, transfers, DApp, CLI).
- Initial MCP Server connection probing and error handling for stable operations.
- Robust authentication state management with auto token refresh and guidance.
- Detailed module flows and tool call specs for asset queries and transaction histories.
- Clear cross-skill routing for further actions (market, audit, trading, DApp, CLI).
元数据
常见问题
Gate DEX Wallet 是什么?
Gate DEX wallet account management. Handles authentication (Google OAuth and Gate OAuth), token balance queries, wallet address retrieval, transaction and sw... 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件,目前累计下载 338 次。
如何安装 Gate DEX Wallet?
在 OpenClaw 或 Claude Code 对话框中运行命令「/install gate-dex-wallet」即可一键安装,无需额外配置。
Gate DEX Wallet 是免费的吗?
是的,Gate DEX Wallet 完全免费,采用 MIT-0 许可证,可自由下载、安装和使用。
Gate DEX Wallet 支持哪些平台?
Gate DEX Wallet 跨平台运行,可在任意部署了 OpenClaw / Claude Code 的环境中使用(cross-platform)。
谁开发了 Gate DEX Wallet?
由 Gate(@gate-exchange)开发并维护,当前版本 v1.0.3。
推荐 Skills