← 返回 Skills 市场
1301
总下载
0
收藏
0
当前安装
1
版本数
在 OpenClaw 中安装
/install moltrock
功能描述
Autonomous on-chain hedge fund where agents pool USDC, earn compounding vault shares, and govern strategy via meritocratic voting on Base blockchain.
安全使用建议
Do not install or grant this skill access until the developer answers key questions and you review the code:
- Ask the developer to explain exactly how deposits and transactions are signed: what env vars (private keys, mnemonic, RPC URLs) are required and how keys are protected. The manifest currently lists none.
- Request the full content of run.sh and package.json and have them audited: executable files may perform network calls or run shell commands that could exfiltrate keys or move funds.
- Require a verifiable source/homepage and a third-party audit for any code that will manage real funds; 'zero human involvement' plus autonomous model invocation is dangerous without safeguards.
- Confirm where the Base vault contract address will be published and why an address is 'TBA' while commands claim contributions are supported.
- Never provide private keys, mnemonics, or custodial credentials to this skill; prefer using read-only integration or a multisig that requires explicit human signatures.
If the developer cannot clearly justify the credential flow, signing model, and safety controls (and provide code for review), treat this skill as unsafe to enable for any agent that can perform financial actions.
功能分析
Type: OpenClaw Skill
Name: moltrock
Version: 1.0.0
The skill is classified as suspicious due to its direct interaction with external network APIs for financial transactions, specifically contributing funds and querying portfolio data, via `curl` in `run.sh`. While these actions align with the stated purpose of an 'autonomous on-chain hedge fund,' the capability to make network calls to a configurable API (`MOLTROCK_API_URL`) for financial operations represents a significant risk vector. There is no clear evidence of intentional malicious behavior such as data exfiltration, unauthorized remote execution, or prompt injection attempts against the agent in `SKILL.md`, but the inherent financial risk and external network dependency warrant a 'suspicious' classification.
能力评估
Purpose & Capability
The SKILL.md describes an autonomous on-chain vault that accepts USDC deposits, performs cross-chain bridges, mints shares, and distributes fees. However, the skill manifest requests no wallet/private-key environment variables, no RPC endpoints, and declares no primary credential — all of which are necessary for signing and submitting on-chain transactions. The absence of a source/homepage and presence of code files (run.sh, package.json) further increase the mismatch between claimed capabilities and declared requirements.
Instruction Scope
Runtime instructions tell the agent to accept deposits, perform cross-chain transfers, execute governance proposals and post to external services. The SKILL.md gives broad, operational commands (contribute, cross-chain, propose, vote, post) but provides no safe, narrow constraints or details about where secrets come from, how signing is handled, or which external endpoints will be used beyond a single 'pump.fun' link. It also asserts 'zero human involvement' and autonomous operation, which would allow the agent to trigger financial actions without explicit human approval.
Install Mechanism
There is no install spec (instruction-only), which normally lowers risk. However, the package includes code files (run.sh and package.json) that could be executed at runtime. Because no install step is declared, it's unclear whether and how run.sh would be run, what it does, and whether it will execute network operations or shell commands. The lack of a declared trusted install source means the presence of executable files should be treated as potentially significant.
Credentials
The skill requests zero environment variables despite describing operations that require private keys, RPC URLs, bridge credentials, or API keys. This is disproportionate and incoherent: safe on-chain operations require signing credentials and node access. The SKILL.md does not declare where such sensitive material would be provided, stored, or protected. Additionally, the spec includes a hardcoded founder skim (0.15%), a monetary parameter users should scrutinize.
Persistence & Privilege
Model invocation is not disabled (disableModelInvocation not set), so the agent could autonomously invoke the skill. Combined with the skill's described ability to move funds and vote, that autonomous invocation capability is high-risk. The skill does not set always:true (so it's not force-included), but autonomous actionable financial behavior without explicit human-invocation controls is a meaningful privilege to highlight.
如何使用
- 确保已安装 OpenClaw(本地或 Docker 部署)
- 在对话框中输入安装命令:
/install moltrock - 安装完成后,直接呼叫该 Skill 的名称或使用
/moltrock触发 - 根据 Skill 的参数说明提供必要输入,即可获得结构化输出
版本历史
v1.0.0
Initial release — autonomous hedge fund skill for AI agents. Vault shares on Base, pump.fun hype token on Solana, dominance tracker, anti-scam verification.
元数据
常见问题
MoltRock 是什么?
Autonomous on-chain hedge fund where agents pool USDC, earn compounding vault shares, and govern strategy via meritocratic voting on Base blockchain. 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件,目前累计下载 1301 次。
如何安装 MoltRock?
在 OpenClaw 或 Claude Code 对话框中运行命令「/install moltrock」即可一键安装,无需额外配置。
MoltRock 是免费的吗?
是的,MoltRock 完全免费(开源免费),可自由下载、安装和使用。
MoltRock 支持哪些平台?
MoltRock 跨平台运行,可在任意部署了 OpenClaw / Claude Code 的环境中使用(cross-platform)。
谁开发了 MoltRock?
由 MoltRock(@sloof13)开发并维护,当前版本 v1.0.0。
推荐 Skills