← 返回 Skills 市场
650
总下载
0
收藏
0
当前安装
4
版本数
在 OpenClaw 中安装
/install paygents
功能描述
Accept crypto payments in AI agent conversations. Generate MetaMask/Trust Wallet deeplinks, verify transactions on-chain, check balances, issue receipts. No...
安全使用建议
This skill appears to do what it says: build mobile wallet deeplinks, query public RPCs to verify transactions, and produce receipts — and it does not request private keys or API keys. Before installing or enabling it: 1) Be aware public RPC endpoints (default fallbacks) will see wallet addresses and tx hashes; set RPC_<chainId> env vars or a local config.json to point to a private node if you want more privacy. 2) The skill can write receipts to disk (if you use --out) and the instructions recommend persisting a wallet preference — decide whether you want that stored in agent memory or cleared between sessions. 3) The rpc-config code looks for config.json in the skill root and the current working directory — ensure you review any config.json it might pick up to avoid unintended data exposure. 4) Test on a testnet (Sepolia / Base Sepolia) before using mainnet, and verify the skill's origin (the manifest's source is unknown; README references a GitHub repo). 5) No API keys are required, and you should never type or paste private keys into prompts; the workflow intentionally relies on the user's wallet app to approve transactions. If you need stronger privacy, point RPC_* to a node you control and avoid enabling long-term persistence of wallet preferences or receipts.
功能分析
Type: OpenClaw Skill
Name: paygents
Version: 0.3.0
The skill bundle implements legitimate cryptocurrency payment functionalities for an AI agent. However, the `scripts/evm-receipt.sh` script contains a path traversal vulnerability via the `--out` parameter. An attacker could craft a prompt to the agent to use this parameter with a path traversal payload (e.g., `../../../../tmp`) to write receipt files to arbitrary locations on the filesystem where the agent has write permissions. While this is a significant vulnerability, there is no clear evidence of intentional malicious behavior (e.g., writing to sensitive system files with malicious content or exfiltrating data) within the skill's code or instructions, classifying it as suspicious rather than malicious.
能力评估
Purpose & Capability
The name/description (generate MetaMask/Trust deeplinks, verify txs, check balances, issue receipts) matches the included scripts and library. Declared requirements (node, bash) are appropriate for the shipped JS/Bash scripts. There are no extraneous credentials or unrelated binaries requested.
Instruction Scope
SKILL.md and the scripts focus on link generation, RPC calls, scanning blocks/logs, and receipt generation—all within the described scope. The instructions ask the agent to "ask once, remember forever" for wallet preference and to persist session memory; the codebase does not implement agent memory handling but does provide file-based receipt saving. The skill will query public RPC endpoints by default (exposing queried addresses/tx hashes to those RPC operators), which the README/SKILL.md does note. The instruction to "remember forever" is a privacy/persistence choice and should be considered when enabling the skill.
Install Mechanism
No install spec or remote downloads are used; this is an instruction-only skill with local scripts included. Nothing in the manifest installs external binaries or fetches code at runtime. Risk from install mechanism is low.
Credentials
The skill declares no required env vars or credentials (consistent with 'no API keys'). The code supports optional RPC overrides via environment variables named RPC_<chainId> and reading a local config.json; these are reasonable for RPC customization but are not listed in requires.env. Public RPC fallbacks are hardcoded and will see addresses/tx hashes used. The scripts may also read a config.json from the skill root or current working directory — review that file before running to avoid unintended config leakage. No other secrets or unrelated credentials are requested.
Persistence & Privilege
always:false. The skill suggests persisting a user's wallet preference ('remember forever') in agent memory; the provided code does not implement the agent memory storage but does implement writing receipts to disk if requested. Persisted preferences or saved receipts are normal for this functionality but are a privacy consideration: they can contain wallet addresses, tx hashes, memos, and merchant names. The skill does not modify other skills or global agent settings.
如何使用
- 确保已安装 OpenClaw(本地或 Docker 部署)
- 在对话框中输入安装命令:
/install paygents - 安装完成后,直接呼叫该 Skill 的名称或使用
/paygents触发 - 根据 Skill 的参数说明提供必要输入,即可获得结构化输出
版本历史
v0.3.0
Fix script paths, add Quick Start, unified branding, improved description
v0.2.0
Configurable RPC endpoints: env vars, config.json, or public fallbacks. No more hardcoded RPCs.
v0.1.1
Fix: declare node/bash requirements, clarify RPC privacy, improve wallet preference docs
v0.1.0
Initial release
元数据
常见问题
PayGents 是什么?
Accept crypto payments in AI agent conversations. Generate MetaMask/Trust Wallet deeplinks, verify transactions on-chain, check balances, issue receipts. No... 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件,目前累计下载 650 次。
如何安装 PayGents?
在 OpenClaw 或 Claude Code 对话框中运行命令「/install paygents」即可一键安装,无需额外配置。
PayGents 是免费的吗?
是的,PayGents 完全免费(开源免费),可自由下载、安装和使用。
PayGents 支持哪些平台?
PayGents 跨平台运行,可在任意部署了 OpenClaw / Claude Code 的环境中使用(cross-platform)。
谁开发了 PayGents?
由 Amitay(@amitaybohadana)开发并维护,当前版本 v0.3.0。
推荐 Skills