← 返回 Skills 市场
Quick Intel Token Security Scanner
作者
Ninja Dev (QI)
· GitHub ↗
· v1.0.8
766
总下载
1
收藏
2
当前安装
9
版本数
在 OpenClaw 中安装
/install quickintel-scan
功能描述
Scan any token for security risks, honeypots, and scams using Quick Intel's contract analysis API. Use when: checking if a token is safe to buy, detecting ho...
安全使用建议
This skill appears to do what it says: call Quick Intel's scan API and pay ~ $0.03 per scan. Before installing or using it: (1) confirm you trust the Quick Intel and recommended wallet service domains (x402.quickintel.io, paysponge.com, frames.ag, etc.), (2) never put your main private key into an environment variable — if you must use programmatic signing, create a dedicated hot wallet with minimal funds ($1–5 USDC) as the docs advise, (3) prefer managed wallet integrations (Sponge/AgentWallet) so no raw keys are stored or exposed to the agent, (4) be aware each scan costs money and will trigger on-chain payment flows, and (5) note the skill's source/homepage is missing — that lowers confidence; if you need higher assurance ask the publisher for a verifiable homepage or open-source reference before proceeding.
功能分析
Type: OpenClaw Skill
Name: quickintel-scan
Version: 1.0.8
The skill provides a legitimate service for scanning token contracts for security risks using the Quick Intel API. It clearly outlines its purpose, payment mechanism (x402 protocol), and required credentials. Crucially, it includes strong and repeated warnings about wallet security, advising against using main wallet private keys and recommending managed wallet services (Sponge, AgentWallet) to avoid raw key exposure. While it offers an 'advanced' option for programmatic signing that uses a private key from an environment variable, it explicitly cautions users to use a 'dedicated hot wallet with minimal funds' for this purpose. There is no evidence of malicious prompt injection, unauthorized data exfiltration, or execution of arbitrary commands. The skill is transparent about its operations and prioritizes user security advice.
能力评估
Purpose & Capability
The skill exists to call Quick Intel's scan endpoint and pay a $0.03 x402 payment; the documented wallet integrations (managed wallet API keys or a dedicated hot-wallet private key) are reasonable and proportional to that purpose. There are no unrelated credentials or binaries requested.
Instruction Scope
SKILL.md explicitly instructs the agent to POST to the Quick Intel x402 endpoint and to perform payment signing via managed-wallet APIs or programmatic signing. The instructions do not ask the agent to read unrelated local files or exfiltrate unrelated data. Note: the skill includes code patterns that require an X402_PAYMENT_KEY environment variable for programmatic signing — these env vars are presented as 'recommended/advanced' but the registry metadata lists no required env vars.
Install Mechanism
Instruction-only skill with no install spec and no code files — nothing will be downloaded or written to disk at install time, reducing install risk.
Credentials
The only sensitive data the skill suggests using are managed-wallet API tokens (SPONGE_API_KEY, AGENTWALLET_API_TOKEN) or a dedicated hot-wallet private key (X402_PAYMENT_KEY) for payments. Those are proportionate to a service that requires on-chain payments, but they are highly sensitive. The skill repeatedly warns to avoid using main wallet keys and to use a minimal-funded dedicated wallet or managed wallet service.
Persistence & Privilege
The skill does not request permanent/system-level presence (always:false) and does not modify other skills or system-wide agent settings.
如何使用
- 确保已安装 OpenClaw(本地或 Docker 部署)
- 在对话框中输入安装命令:
/install quickintel-scan - 安装完成后,直接呼叫该 Skill 的名称或使用
/quickintel-scan触发 - 根据 Skill 的参数说明提供必要输入,即可获得结构化输出
版本历史
v1.0.8
- No changes detected in this version.
- All files remain unchanged.
v1.0.7
quickintel-scan v1.0.7
- Added explicit credential recommendations: supports managed wallets (Sponge, AgentWallet, Vincent, Lobster.cash) that avoid exposing raw private keys.
- Updated setup documentation with clear wallet security guidance, advising use of managed wallets or dedicated hot wallets with minimal funds for programmatic signing.
- Rearranged integration patterns by security level, highlighting options that require no raw key exposure.
- Introduced new credential variables (SPONGE_API_KEY, AGENTWALLET_API_TOKEN, X402_PAYMENT_KEY) with setup instructions.
- Clarified that the skill is strictly read-only and never accesses user tokens or assets.
v1.0.6
quickintel-scan v1.0.6
- Added a new Reference.md file with implementation and integration details.
- Skill documentation (SKILL.md) now refers users to Reference.md for advanced/alternative integration patterns and wallet examples.
- No code or functional changes to the scanning API itself; this version is focused on developer documentation improvements.
v1.0.5
- Typo fix.
v1.0.4
quickintel-scan v1.0.4
- Added a "Security Model" section to the documentation, clearly outlining the trust boundaries and confirming the service is strictly read-only.
- Clarified user responsibilities—emphasized never sharing private keys and treating results as informational, not guarantees.
- Provided explicit verification steps for users to independently validate scan results.
- Listed operator information, usage context, and third-party integrations for increased transparency.
- No changes to endpoints, triggers, costs, or API parameters.
v1.0.3
Version 1.0.3
- Updated examples for x402 and wallets to properly request for x402 payment.
v1.0.2
quickintel-scan v1.0.2
- Added support for Solana payments (SPL USDC) via the x402 protocol—scan payments can now be made on Solana in addition to EVM chains.
- Updated documentation and payment flow sections to describe the Solana (SVM) process, including partially signed SPL transfers and fee payer logic.
- Expanded the list of payment networks in the overview to clearly include Solana.
- Clarified that Base is recommended for EVM payments (lowest fees), while Solana is also now supported.
v1.0.1
No user-facing changes in this release; metadata and links updated version update only.
v1.0.0
Initial release — x402 v2 payment protocol, multi-chain support
元数据
常见问题
Quick Intel Token Security Scanner 是什么?
Scan any token for security risks, honeypots, and scams using Quick Intel's contract analysis API. Use when: checking if a token is safe to buy, detecting ho... 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件,目前累计下载 766 次。
如何安装 Quick Intel Token Security Scanner?
在 OpenClaw 或 Claude Code 对话框中运行命令「/install quickintel-scan」即可一键安装,无需额外配置。
Quick Intel Token Security Scanner 是免费的吗?
是的,Quick Intel Token Security Scanner 完全免费(开源免费),可自由下载、安装和使用。
Quick Intel Token Security Scanner 支持哪些平台?
Quick Intel Token Security Scanner 跨平台运行,可在任意部署了 OpenClaw / Claude Code 的环境中使用(cross-platform)。
谁开发了 Quick Intel Token Security Scanner?
由 Ninja Dev (QI)(@azep-ninja)开发并维护,当前版本 v1.0.8。
推荐 Skills