← 返回 Skills 市场
Settld MCP Payments
作者
aidenlippert
· GitHub ↗
· v0.1.0
695
总下载
0
收藏
0
当前安装
1
版本数
在 OpenClaw 中安装
/install settld-mcp-payments
功能描述
Connect OpenClaw agents to Settld MCP for paid tool calls with quote-bound authorization and verifiable receipts.
安全使用建议
Before installing or running this skill: 1) Treat SETTLD_API_KEY as a sensitive secret — only provide a least-privilege or scoped key. 2) Ask the publisher for provenance: where is the settld-mcp npm package hosted, is there a source repository, a pinned version, and release checksums or signatures? Do not run unpinned npx commands in production. 3) Update the skill manifest or ask the registry owner to declare required env vars so the platform can surface the credential requirement. 4) If you must test, run the MCP server in an isolated environment (sandbox/container) and use test credentials and a billing limit. 5) Monitor billing and receipts for unexpected charges. 6) If you cannot verify the npm package source or author, treat this skill as high-risk and avoid providing real production credentials.
功能分析
Type: OpenClaw Skill
Name: settld-mcp-payments
Version: 0.1.0
The skill bundle is classified as suspicious due to the use of `npx -y settld-mcp` in `SKILL.md` and `mcp-server.example.json`. While `npx` is a legitimate tool, the `-y` flag allows automatic download and execution of an external npm package (`settld-mcp`) without explicit confirmation, introducing a supply chain risk. If the `settld-mcp` package were compromised, it could lead to arbitrary code execution. There is no direct evidence of malicious intent within the provided files, but this execution model represents a significant vulnerability.
能力评估
Purpose & Capability
The SKILL.md purpose (connect to Settld MCP, run paid tool calls, produce receipts) is coherent with needing SETTLD_API_KEY, SETTLD_BASE_URL, and SETTLD_TENANT_ID. However, the registry metadata lists no required environment variables or primary credential despite SKILL.md explicitly naming these secrets. That inconsistency means the package's required privileges are not declared to the platform and may not be surfaced to users.
Instruction Scope
The runtime instructions are narrowly scoped to MCP interactions (calling settld.* tools, returning headers, running an MCP server). They do not instruct reading unrelated files or exfiltrating system data. They do, however, instruct running a server via `npx -y settld-mcp` and using API keys from env vars, which grants an external package the ability to execute arbitrary code at runtime — this broadens the effective scope beyond the written instructions.
Install Mechanism
There is no formal install spec in the skill manifest, but the SKILL.md and mcp-server.example.json direct users/agents to launch `npx -y settld-mcp`. npx dynamically fetches and executes a package from npm; the skill does not pin a package version, provide a checksum, or link to a repository or homepage. Dynamic npm fetch is a moderate-to-high risk without provenance or pinning, because arbitrary code may be downloaded and executed at runtime.
Credentials
The environment variables named in SKILL.md (SETTLD_API_KEY, SETTLD_BASE_URL, SETTLD_TENANT_ID, optional SETTLD_PAID_TOOLS_BASE_URL/SETTLD_PROTOCOL) are appropriate for a payment/settlement integration. However, the skill registry metadata did not declare any required env vars or primary credential, creating an omission that hides the fact that the skill needs sensitive secrets. Requiring live API keys without manifest declaration increases the risk of inadvertent exposure or misuse by runtime code.
Persistence & Privilege
The skill is not marked always:true and has no install-time persistence or config writes in the manifest. Autonomous invocation (default) is allowed; combined with a secret API key and the ability to run an npm package, an agent could autonomously make paid calls. This is not intrinsically incorrect, but users should be aware that the skill can be invoked by the agent and may incur charges if given credentials.
如何使用
- 确保已安装 OpenClaw(本地或 Docker 部署)
- 在对话框中输入安装命令:
/install settld-mcp-payments - 安装完成后,直接呼叫该 Skill 的名称或使用
/settld-mcp-payments触发 - 根据 Skill 的参数说明提供必要输入,即可获得结构化输出
版本历史
v0.1.0
Initial public release: Settld MCP paid tool integration for OpenClaw.
元数据
常见问题
Settld MCP Payments 是什么?
Connect OpenClaw agents to Settld MCP for paid tool calls with quote-bound authorization and verifiable receipts. 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件,目前累计下载 695 次。
如何安装 Settld MCP Payments?
在 OpenClaw 或 Claude Code 对话框中运行命令「/install settld-mcp-payments」即可一键安装,无需额外配置。
Settld MCP Payments 是免费的吗?
是的,Settld MCP Payments 完全免费(开源免费),可自由下载、安装和使用。
Settld MCP Payments 支持哪些平台?
Settld MCP Payments 跨平台运行,可在任意部署了 OpenClaw / Claude Code 的环境中使用(cross-platform)。
谁开发了 Settld MCP Payments?
由 aidenlippert(@aidenlippert)开发并维护,当前版本 v0.1.0。
推荐 Skills