← 返回 Skills 市场

Project 0 - DeFi Native Prime Broker

Name: Project 0 - DeFi Native Prime Broker
Author: borcherd

作者 Borcherd van Brakell · GitHub ↗ · v2.2.6

cross-platform ⚠ suspicious

407

总下载

当前安装

版本数

在 OpenClaw 中安装

/install project-0

功能描述

Permissionless DeFi yield and credit on Solana via the Project 0 (P0) protocol. Deposit funds to earn yield across Solana's highest-yielding venues. Borrow s...

安全使用建议

This skill is broadly coherent for a Solana on-chain broker, but it will ask for extremely sensitive items (your RPC endpoint and a private key file). Before installing or running it: (1) do not paste your main private key into chat — use a dedicated, low-value wallet or an external signer/hardware wallet; (2) confirm exactly which endpoints the agent will call (P0 API, wallet API, Jupiter) and that those are the official URLs; (3) ask the skill author to update requires.env to include the alternate env names it references (SOLANA_RPC_URL, HELIUS_RPC_URL, JUP_API_KEY) or explain why they aren't required; (4) prefer giving a view-only WALLET_ADDRESS for planning steps and only provide signing credentials interactively and after you review the exact transaction; (5) test with a very small amount first. If the author cannot explain the undeclared env names or insists on long-lived direct private-key access without external signing, treat it as higher risk.

功能分析

Type: OpenClaw Skill Name: project-0 Version: 2.2.6 The skill is classified as suspicious due to a prompt injection vulnerability and a supply chain risk. The 'Agent Workflow' instructions in SKILL.md explicitly tell the agent to 'use it directly' if 'the user provided a keypair path in their message'. This, combined with the `fs.readFileSync(keypairPath, 'utf-8')` in the 'Wallet setup' code, creates an arbitrary file read vulnerability where a malicious user could instruct the agent to read sensitive files (e.g., `/etc/passwd`, `~/.ssh/id_rsa`). Additionally, the skill fetches and executes `VersionedTransaction` objects directly from the Jupiter API (`https://api.jup.ag/swap/v1/swap`) without explicit agent-side validation of the transaction's intent before signing, posing a supply chain risk if the Jupiter API were compromised.

能力评估

✓ Purpose & Capability

The name/description (permissionless DeFi on Solana) align with the requested items: an RPC URL, wallet keypair/address, P0 account, and a Jupiter API key for token swaps are all reasonable for an on-chain broker.

ℹ Instruction Scope

The SKILL.md describes sensible read-only and signing flows and instructs the agent to fetch wallet holdings, P0 data, and (optionally) perform swaps. However, the runtime instructions reference additional environment variables and lookup locations (SOLANA_RPC_URL, HELIUS_RPC_URL, JUP_API_KEY) that are not listed in requires.env — this is a minor inconsistency and should be clarified. The doc repeatedly emphasizes asking for confirmation before signing, which is appropriate.

✓ Install Mechanism

Instruction-only skill with no install spec or code files. No packages or remote downloads are requested — low installation risk.

⚠ Credentials

The required env vars are plausible for the stated purpose, but they include highly sensitive items (WALLET_KEYPAIR meaning a private key file and RPC credentials). The SKILL.md also implicitly expects alternate names (SOLANA_RPC_URL, HELIUS_RPC_URL, JUP_API_KEY) that are not declared — a mismatch. Require-users-to-provide-private-keys behaviour is proportionate to on-chain signing, but elevates risk and should be limited (dedicated low-value wallet, hardware signing, or external signer).

✓ Persistence & Privilege

always is false and there is no install step or modification of other skills/configs. The skill does not request permanent system presence beyond runtime environment variables.

如何使用

确保已安装 OpenClaw（本地或 Docker 部署）
在对话框中输入安装命令：/install project-0
安装完成后，直接呼叫该 Skill 的名称或使用 /project-0 触发
根据 Skill 的参数说明提供必要输入，即可获得结构化输出

版本历史

v2.2.6

- Added security notice: explicitly require a dedicated wallet keypair for signing transactions; never use your main private key. - Clarified that the agent will always ask for user confirmation before signing. - Expanded supported environment variables for Solana RPC URLs and Jupiter API keys (now recognizes SOLANA_RPC_URL, HELIUS_RPC_URL, JUP_API_KEY). - Updated credential collection steps to reflect new environment variable priorities and naming. - Read-only operations now clearer: no keypair required. - Minor clarifications throughout to improve safety and user guidance.

v2.2.5

**Changelog for version 2.2.5:** - Added explicit requirements for `WALLET_ADDRESS`, `P0_ACCOUNT`, and `JUPITER_API_KEY` in environment metadata. - Updated credential collection steps to clarify usage and checking of `RPC_URL`, `WALLET_KEYPAIR`, `WALLET_ADDRESS`, `P0_ACCOUNT`, and `JUPITER_API_KEY`. - Refined instructions for swap credential handling—only `JUPITER_API_KEY` is mentioned now. - No code or endpoint changes; documentation and environment setup guidance improved.

v2.2.4

project-0 v2.2.4 Changelog - Updated required environment variables: `WALLET_KEYPAIR` is now listed as required alongside `RPC_URL` in metadata. - No code or workflow changes; documentation and metadata only. - Maintains same user and agent workflow as previous version.

v2.2.3

- Dropped unused environment variable requirements; only RPC_URL is now required in metadata. - Version bump to 2.2.3 with no code or logic changes.

v2.2.2

Minor update to metadata requirements for environment variables. - Added a metadata block specifying required environment variables: RPC_URL, WALLET_KEYPAIR, WALLET_ADDRESS, P0_ACCOUNT, JUPITER_API_KEY. - Clarified primary environment variable as RPC_URL. - No code or functional logic changes.

v1.0.0

Project 0 Skill v1.0.0 – Initial Release - Introduced Project 0, a permissionless DeFi prime broker on Solana for unified yield and credit management. - Supports wallet balance checks across SOL and supported tokens, with recommendations for best yield/credit actions. - Provides step-by-step agent workflow for depositing, borrowing, swapping, and executing advanced yield strategies. - Integrated with public APIs for fetching current lending pools and strategy data. - Includes detailed user prompts for required credentials (RPC URL, wallet/keypair, and swap API key). - Documentation and use-case examples supplied for streamlined onboarding.

元数据

Slug project-0

版本 2.2.6

许可证 —

累计安装 0

当前安装数 0

历史版本数 6

常见问题

Project 0 - DeFi Native Prime Broker 是什么？

Permissionless DeFi yield and credit on Solana via the Project 0 (P0) protocol. Deposit funds to earn yield across Solana's highest-yielding venues. Borrow s... 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件，目前累计下载 407 次。

如何安装 Project 0 - DeFi Native Prime Broker？

在 OpenClaw 或 Claude Code 对话框中运行命令「/install project-0」即可一键安装，无需额外配置。

Project 0 - DeFi Native Prime Broker 是免费的吗？

是的，Project 0 - DeFi Native Prime Broker 完全免费（开源免费），可自由下载、安装和使用。

Project 0 - DeFi Native Prime Broker 支持哪些平台？

Project 0 - DeFi Native Prime Broker 跨平台运行，可在任意部署了 OpenClaw / Claude Code 的环境中使用（cross-platform）。

谁开发了 Project 0 - DeFi Native Prime Broker？

由 Borcherd van Brakell（@borcherd）开发并维护，当前版本 v2.2.6。