← 返回 Skills 市场
ntriq-gh

Ntriq X402 Code Review Batch

作者 ntriq · GitHub ↗ · v1.0.0 · MIT-0
cross-platform ⚠ suspicious
71
总下载
0
收藏
1
当前安装
1
版本数
在 OpenClaw 中安装
/install ntriq-x402-code-review-batch
功能描述
Batch AI code review for up to 500 snippets. Flat $15.00 USDC via x402.
安全使用建议
This skill has notable inconsistencies and privacy risks. It claims "local inference" but its runtime instructions send your code snippets to a remote endpoint and require an X-PAYMENT header (not declared in the metadata). Before installing or using it: (1) Do not send real secrets or private code — test only with non-sensitive snippets. (2) Ask the publisher how to obtain and protect the X-PAYMENT header/token and why that credential isn't declared in metadata. (3) Clarify the "local inference" claim vs. the documented remote API — request written documentation or an SDK. (4) Verify the domain (x402.ntriq.co.kr) and the payment protocol, and confirm privacy/retention policies (will your code be stored or used to train models?). (5) If you cannot get satisfactory answers, avoid using the skill for sensitive code. My confidence is medium; additional information (publisher contact, API docs, payment/token handling, and privacy/retention policy) would likely change the assessment.
功能分析
Type: OpenClaw Skill Name: ntriq-x402-code-review-batch Version: 1.0.0 The skill instructs the agent to send up to 500 code snippets to an external endpoint (https://x402.ntriq.co.kr/code-review-batch) for a fee of $15.00 USDC via the x402 protocol. While this aligns with the stated purpose of a batch code review service, it facilitates the exfiltration of potentially sensitive source code to a third-party domain and includes instructions for automated financial transactions, which are high-risk behaviors.
能力标签
cryptocan-make-purchases
能力评估
Purpose & Capability
Name/description (batch code review) aligns with the provided POST API. However the SKILL.md claims "100% local inference on Mac Mini" while every runtime instruction shows sending snippets to https://x402.ntriq.co.kr. That is a direct contradiction: either inference is local (no network calls) or it is remote (network + payment).
Instruction Scope
Instructions tell the agent to POST up to 500 code snippets (examples include sensitive content like eval() and hardcoded passwords) to a third-party endpoint and to include an X-PAYMENT header. There are no warnings about sending sensitive data, no redaction guidance, and no detail on how to obtain or protect the payment header. This grants the skill broad authority to transmit potentially sensitive code off-host without declared safeguards.
Install Mechanism
Instruction-only skill with no install steps or code files. This minimizes on-disk risk; nothing is downloaded or written by an install process.
Credentials
SKILL.md requires an X-PAYMENT header in requests (a credential/token) but the registry metadata lists no required environment variables or primary credential. The skill therefore omits declaring a credential it clearly needs. Additionally, there is no explanation of how payment is obtained or stored, and no privacy/consent mechanism for submitting potentially secret-containing snippets.
Persistence & Privilege
The skill is not always-on and uses default autonomous invocation settings. It does not request elevated persistence or modify other configurations.
如何使用
  1. 确保已安装 OpenClaw(本地或 Docker 部署)
  2. 在对话框中输入安装命令:/install ntriq-x402-code-review-batch
  3. 安装完成后,直接呼叫该 Skill 的名称或使用 /ntriq-x402-code-review-batch 触发
  4. 根据 Skill 的参数说明提供必要输入,即可获得结构化输出
版本历史
v1.0.0
- Initial release of ntriq-x402-code-review-batch. - Batch review up to 500 code snippets per request. - Flat $15.00 USDC per batch via x402 protocol (Base mainnet, EIP-3009 gasless). - 100% local inference processing on Mac Mini. - Supports review focus options: security, performance, quality, or all. - Simple JSON API with endpoint and example provided.
元数据
Slug ntriq-x402-code-review-batch
版本 1.0.0
许可证 MIT-0
累计安装 1
当前安装数 1
历史版本数 1
常见问题

Ntriq X402 Code Review Batch 是什么?

Batch AI code review for up to 500 snippets. Flat $15.00 USDC via x402. 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件,目前累计下载 71 次。

如何安装 Ntriq X402 Code Review Batch?

在 OpenClaw 或 Claude Code 对话框中运行命令「/install ntriq-x402-code-review-batch」即可一键安装,无需额外配置。

Ntriq X402 Code Review Batch 是免费的吗?

是的,Ntriq X402 Code Review Batch 完全免费,采用 MIT-0 许可证,可自由下载、安装和使用。

Ntriq X402 Code Review Batch 支持哪些平台?

Ntriq X402 Code Review Batch 跨平台运行,可在任意部署了 OpenClaw / Claude Code 的环境中使用(cross-platform)。

谁开发了 Ntriq X402 Code Review Batch?

由 ntriq(@ntriq-gh)开发并维护,当前版本 v1.0.0。

推荐 Skills
self-improving agent
Captures learnings, errors, and corrections to enable continuous improvement. Use when: (1) A command or operation fails unexpectedly, (2) User corrects Clau...
⬇ 463283 · by pskoett
Skill Vetter
Security-first skill vetting for AI agents. Use before installing any skill from ClawdHub, GitHub, or other sources. Checks for red flags, permission scope, and suspicious patterns.
⬇ 259410 · by spclaudehome
Polymarket
Query Polymarket prediction markets. Check odds, find trending markets, search events, track price movements.
⬇ 232503 · by joelchance
Self-Improving + Proactive Agent
Self-reflection + Self-criticism + Self-learning + Self-organizing memory. Agent evaluates its own work, catches mistakes, and improves permanently. Use when...
⬇ 200423 · by ivangdavila
Github
Interact with GitHub using the `gh` CLI. Use `gh issue`, `gh pr`, `gh run`, and `gh api` for issues, PRs, CI runs, and advanced queries.
⬇ 191115 · by steipete
ontology
Typed knowledge graph for structured agent memory and composable skills. Use when creating/querying entities (Person, Project, Task, Event, Document), linkin...
⬇ 190156 · by oswalpalash

💬 留言讨论