← 返回 Skills 市场
Smart Money Miner
作者
Jackydai-bc
· GitHub ↗
· v1.0.0
· MIT-0
355
总下载
0
收藏
1
当前安装
1
版本数
在 OpenClaw 中安装
/install smart-money-miner
功能描述
This skill should be used when the user asks to "mine smart money addresses", "find smart money", "analyze PumpFun tokens", "analyze Four Meme tokens", "anal...
安全使用建议
What to consider before installing or running this skill:
- Review the code before running. Open scripts/miner.py and grep for subprocess, os.system, eval/exec, open(..., 'r') outside the workspace, or any hidden network destinations. The visible miner.py uses requests and is network-heavy but does not obviously spawn shell commands.
- Be cautious about the included virtualenv. The repository bundles a full venv (pip, requests, urllib3, etc.). Do NOT run that venv blindly — instead create a fresh isolated environment (e.g., new Python venv or container) and install only the minimal dependencies (requests) from PyPI.
- Run in isolation first. Execute the script in a disposable container or VM, with network monitoring, and start with tiny limits (e.g., --limit 1) so you can observe outbound requests and behaviour.
- Check external endpoints and credentials. The code calls OKX 'priapi' endpoints and a Binance narrative endpoint. Confirm whether those endpoints are public and whether they expect API keys; the skill does not request any keys. If you must provide credentials later, only do so with least privilege and after verification.
- Inspect SKILL.md for hidden characters. The scan indicated unicode-control-chars — open the file in a hex-capable editor to ensure there are no invisible sections that could affect automated parsers.
- Validate outputs. Some values in the bundled smart_money_results.json are implausibly large — this may indicate bugs or lack of input validation. Treat results as investigatory data, not trading advice.
- Legal and ethical caution: mining and acting on on-chain trader addresses may have legal or platform policy implications depending on jurisdiction and how you use the results.
If you want, I can:
- Summarize miner.py and highlight any exact lines that perform network calls, file I/O, or potentially risky operations.
- Produce a short checklist of commands to safely run the tool in a containerized environment.
Confidence note: Assessment is medium confidence because the core code aligns with the stated purpose, but the included vendored virtualenv and the unicode-control-chars finding are unexplained and increase risk; additional manual code review would raise confidence either way.
能力评估
Purpose & Capability
The SKILL.md, README, CLAUDE.md and scripts/miner.py are coherent: the code fetches tokens and top traders from PumpFun/FourMeme and OKX, analyzes wallet PnL, and writes JSON results — all matching the stated purpose. Minor note: miner.py also calls a Binance AI narrative endpoint for BSC tokens (reasonable for 'BSC extras').
Instruction Scope
Instructions tell the agent to run scripts/miner.py which performs network requests to multiple third-party endpoints and reads/writes local JSON files (skip_addresses.json and smart_money_results.json). The runtime instructions do not request unrelated system files or secrets, but they do allow broad network activity (multiple external APIs) which is expected for this task but should be acknowledged.
Install Mechanism
There is no declared install spec, but the repository ships a full Python virtualenv (venv/) with hundreds of vendored packages (pip, requests, urllib3, etc.). Packaging a full venv inside a skill increases risk and the attack surface (hidden or modified third-party code), and there is no documented or signed source for those vendored files. The lack of an explicit, minimal install step (pip install requests) combined with the included venv is disproportionate.
Credentials
The skill declares no required environment variables or credentials and the code does not appear to read secrets from env vars. All network calls target PumpFun, Four Meme, OKX, and Binance web endpoints, which is proportionate to the described functionality. (If private OKX endpoints actually require auth, that is not documented here.)
Persistence & Privilege
Skill flags are default (not always:true) and the skill does not request persistent platform privileges or modify other skills. It writes output and optionally reads a local skip file only in its own directory — no elevated privileges requested.
如何使用
- 确保已安装 OpenClaw(本地或 Docker 部署)
- 在对话框中输入安装命令:
/install smart-money-miner - 安装完成后,直接呼叫该 Skill 的名称或使用
/smart-money-miner触发 - 根据 Skill 的参数说明提供必要输入,即可获得结构化输出
版本历史
v1.0.0
Smart Money Miner 1.1.0 introduces major improvements, easier usage, and Solana support.
- New: Supports PumpFun (Solana) and Four Meme (BSC) graduated tokens for smart money mining.
- Improved: Flexible CLI for combining multiple data sources and custom token lists.
- Changed: JSON results instead of Excel, and streamlined command-line options.
- New: Automatic multi-metric filtering with clear criteria for consistently profitable addresses.
- Removed: 30/90-day profit data support (API deprecated); removed pandas/openpyxl dependencies.
- Added: Skip list and advanced usage options for faster, targeted analysis.
元数据
常见问题
Smart Money Miner 是什么?
This skill should be used when the user asks to "mine smart money addresses", "find smart money", "analyze PumpFun tokens", "analyze Four Meme tokens", "anal... 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件,目前累计下载 355 次。
如何安装 Smart Money Miner?
在 OpenClaw 或 Claude Code 对话框中运行命令「/install smart-money-miner」即可一键安装,无需额外配置。
Smart Money Miner 是免费的吗?
是的,Smart Money Miner 完全免费,采用 MIT-0 许可证,可自由下载、安装和使用。
Smart Money Miner 支持哪些平台?
Smart Money Miner 跨平台运行,可在任意部署了 OpenClaw / Claude Code 的环境中使用(cross-platform)。
谁开发了 Smart Money Miner?
由 Jackydai-bc(@jackydai-bc)开发并维护,当前版本 v1.0.0。
推荐 Skills