← 返回 Skills 市场
216
总下载
1
收藏
0
当前安装
1
版本数
在 OpenClaw 中安装
/install spraay-openclaw
功能描述
Payment infrastructure for AI agents. Batch crypto payments, x402 micropayment gateway, agent-to-agent USDC settlement, multi-chain payroll, Bitcoin PSBT tra...
安全使用建议
What to consider before installing: 1) Verify and lock SPRAAY_GATEWAY_URL — only set it to the official gateway URL (https://gateway.spraay.app) unless you fully trust an alternative endpoint. An attacker-controlled gateway URL would let the skill send any data (including local files) to that endpoint. 2) Treat SPRAAY_API_KEY carefully — although optional, confirm whether the gateway uses it; don't provide private keys or wallet secrets to this skill. 3) The script's ipfs-pin reads and base64-encodes a local file and transmits it — avoid using ipfs-pin with sensitive files. 4) The script calls endpoints that may require x402 payment headers; confirm whether payments require your wallet or the gateway negotiates payments server-side before sending funds. 5) Small inconsistencies to confirm: the script uses base64 (not listed in required binaries) and doesn't use the optional API key header; ask the publisher for clarification and for source code or audits of the gateway service before routing real payments. 6) If you plan to allow autonomous agent invocation with this skill, limit its scope (test on a non-production account, use small amounts, and monitor network traffic). If you want more definitive guidance I can: (a) point out exact places to change the script to avoid accidental exfiltration, (b) generate a minimal wrapper that whitelists endpoints/filenames, or (c) produce questions to ask the publisher to increase confidence.
功能分析
Type: OpenClaw Skill
Name: spraay-openclaw
Version: 1.0.0
The Spraay skill bundle provides extensive payment and API gateway capabilities but includes high-risk functionality and security vulnerabilities. The `ipfs-pin` command in `scripts/spraay.sh` allows the agent to read local files, base64-encode them, and transmit their full content to the remote gateway (`gateway.spraay.app`), which serves as a potential data exfiltration vector. Additionally, the script lacks input sanitization when constructing JSON payloads for `curl` commands (e.g., in the `ai` and `batch` cases), making it vulnerable to JSON and shell injection. While these features are consistent with the stated goal of providing an IPFS and payment infrastructure, the lack of safeguards around file access and input handling poses a significant risk to the host environment.
能力评估
Purpose & Capability
Name and description (payment gateway, batch payments, x402, PSBT, RTP) align with the included docs and the script: the skill only needs a gateway URL and curl to call the listed endpoints. The README references gateway-side environment variables (Alchemy, Pinata, etc.) that are internal to the gateway and not required by the skill.
Instruction Scope
The runtime script and SKILL.md instruct the agent to send arbitrary data to the configured gateway URL. The ipfs-pin command base64-encodes and transmits the contents of a local file—this is a legitimate feature for pinning, but it is effectively a capability to exfiltrate any file the agent can read. The SKILL.md also suggests providing callback URLs for RTP; those could cause the agent to expose endpoints or accept inbound webhooks. The script uses base64 -w0 but base64 is not declared in required binaries (inconsistency).
Install Mechanism
No install spec; the skill is instruction+script only and uses curl to make HTTP calls. No remote downloads or archive extraction are present in the skill bundle.
Credentials
Only SPRAAY_GATEWAY_URL is required (SPRAAY_API_KEY optional). This is proportional for a gateway client, but marking the gateway URL as the 'primary credential' is unusual: if an attacker sets SPRAAY_GATEWAY_URL to a malicious endpoint, the agent will send requests and any data (including base64'd files) to that endpoint. The optional SPRAAY_API_KEY is declared but not used by the provided script (inconsistency).
Persistence & Privilege
always is false and the skill does not request persistent or system-wide privileges. The skill does not modify other skills or system settings.
如何使用
- 确保已安装 OpenClaw(本地或 Docker 部署)
- 在对话框中输入安装命令:
/install spraay-openclaw - 安装完成后,直接呼叫该 Skill 的名称或使用
/spraay-openclaw触发 - 根据 Skill 的参数说明提供必要输入,即可获得结构化输出
版本历史
v1.0.0
Initial release of Spraay, a payment infrastructure for AI agents.
- Enables batch crypto payments to multiple recipients across 13+ chains (Base, Ethereum, Solana, Bitcoin, Arbitrum, Polygon, BNB Chain, and more).
- Provides agent access to x402 micropayment gateway with 76+ paid API endpoints (AI, RPC, search, communication, storage, robot tasks, and more).
- Supports Bitcoin batch payments via PSBT (non-custodial, with fee estimation and UTXO management).
- Implements the Robot Task Protocol (RTP) for discovering, commissioning, and paying robots via USDC micropayments.
- Allows agent-to-agent payments (including escrow, milestone-based, and batch settlement).
- Ready-to-integrate via a published MCP server (“spraay-x402-mcp”) for programmatic agent toolkit compatibility.
元数据
常见问题
Spraay Openclaw 是什么?
Payment infrastructure for AI agents. Batch crypto payments, x402 micropayment gateway, agent-to-agent USDC settlement, multi-chain payroll, Bitcoin PSBT tra... 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件,目前累计下载 216 次。
如何安装 Spraay Openclaw?
在 OpenClaw 或 Claude Code 对话框中运行命令「/install spraay-openclaw」即可一键安装,无需额外配置。
Spraay Openclaw 是免费的吗?
是的,Spraay Openclaw 完全免费,采用 MIT-0 许可证,可自由下载、安装和使用。
Spraay Openclaw 支持哪些平台?
Spraay Openclaw 跨平台运行,可在任意部署了 OpenClaw / Claude Code 的环境中使用(cross-platform)。
谁开发了 Spraay Openclaw?
由 plagtech(@plagtech)开发并维护,当前版本 v1.0.0。
推荐 Skills