← 返回 Skills 市场
Sui Agent Wallet
作者
Eason Chen
· GitHub ↗
· v1.0.3
944
总下载
0
收藏
0
当前安装
4
版本数
在 OpenClaw 中安装
/install sui-agent-wallet
功能描述
Provide an AI agent with a secure Sui wallet to manage accounts, sign transactions, switch networks, and interact with Sui DApps via a Chrome extension and l...
安全使用建议
This skill implements a local Sui wallet and a Chrome extension that injects a wallet provider into web pages. Important risks and suggestions:
- Major risk: the server exposes endpoints (SKILL.md shows curl http://localhost:3847/mnemonic) and sets CORS to '*'. If the /mnemonic endpoint (or other signing endpoints) is served without authentication and with permissive CORS, any webpage can fetch or trigger actions on the local wallet via JavaScript — this can lead to immediate secrets exfiltration or unauthorized signing.
- Before installing, review server/index.ts to confirm whether /mnemonic or signing endpoints require explicit user approval, authentication tokens, or an allowlist. The presence of getMnemonic()/exportMnemonic() in wallet.ts and the SKILL.md curl example strongly indicate the seed can be obtained via HTTP.
- If you want to try this code safely:
- Do NOT use it on a machine with real/mainnet funds. Run it in a disposable VM or isolated development environment.
- Consider removing or protecting any /mnemonic or export endpoints, and avoid setting Access-Control-Allow-Origin to '*' (instead restrict to extension origin or require user approval per request).
- Limit extension host_permissions/matches to only the DApp origins you need rather than "<all_urls>".
- Add an authenticated UI prompt or browser-native confirmation before returning the mnemonic or signing any transaction (do not rely solely on the agent or an unauthenticated HTTP call).
- If you need an outright safe verdict: treat this package as suspicious until the server is changed to require strong per-request user confirmation and the CORS/HTTP exposure is hardened.
If you want, I can: (1) point to the exact lines where /mnemonic and CORS are handled in index.ts, (2) suggest code changes to require a local-only token or an approval flow, or (3) produce a safer configuration patch (restrict CORS, remove mnemonic endpoint, require ephemeral auth tokens) you can apply.
能力评估
Purpose & Capability
The files (extension + local server + wallet/keychain logic) match the name 'Sui Agent Wallet' and implement expected features (seed generation, BIP39 derivation, signing, Wallet Standard injection). However, the extension manifest grants broad host_permissions ("<all_urls>") and the server exposes HTTP endpoints (including one that returns the mnemonic per SKILL.md). Those pieces are functionally related to a browser wallet but the combination (open local HTTP API + global content script permissions) expands the attack surface beyond what most wallets expose by default.
Instruction Scope
SKILL.md explicitly instructs users that the server stores the seed in macOS Keychain and gives a curl example to GET /mnemonic. The server sets CORS Access-Control-Allow-Origin: '*', meaning a remote webpage or any local page can fetch wallet endpoints from JS. Exposing an endpoint that returns the raw mnemonic (no auth shown) and allowing cross-origin requests is a serious scope breach: web pages could read the seed or trigger signing unless additional authorization is enforced by the server (none is visible).
Install Mechanism
No remote download of arbitrary code is used by the registry metadata. Installation uses a local install.sh that calls bun install (dependencies are standard NPM packages listed in package.json). This is a typical local install setup; nothing in the install process pulls from an untrusted URL or runs an opaque binary.
Credentials
The skill declares no required environment variables or credentials. It uses macOS Keychain via the 'security' CLI for storing the seed, which is reasonable for secure storage on macOS, but will fail on non-macOS systems. No unrelated cloud credentials are requested.
Persistence & Privilege
The skill is not marked always:true and does not request elevated or cross-skill configuration. It runs as a local server + extension pair and does not modify other skills or global agent settings. Autonomous invocation by the agent is possible (default), but that alone is expected.
如何使用
- 确保已安装 OpenClaw(本地或 Docker 部署)
- 在对话框中输入安装命令:
/install sui-agent-wallet - 安装完成后,直接呼叫该 Skill 的名称或使用
/sui-agent-wallet触发 - 根据 Skill 的参数说明提供必要输入,即可获得结构化输出
版本历史
v1.0.3
Add GitHub link and Related Skills section
v1.0.2
- Added comprehensive documentation (SKILL.md) detailing setup, architecture, and usage of the Sui Agent Wallet skill.
- Describes secure storage of the wallet seed phrase in macOS Keychain and non-sensitive data in a local JSON file.
- Outlines complete API and CLI integration instructions for wallet/address management, signing transactions, and network switching.
- Includes security guidelines, test DApp usage instructions, and BIP44 key derivation path details.
- Documents support for Sui Wallet Standard features and event notifications over WebSocket.
v1.0.1
Translate all content to English
v1.0.0
Initial release: Chrome extension + local server for AI agent wallet control on Sui blockchain
元数据
常见问题
Sui Agent Wallet 是什么?
Provide an AI agent with a secure Sui wallet to manage accounts, sign transactions, switch networks, and interact with Sui DApps via a Chrome extension and l... 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件,目前累计下载 944 次。
如何安装 Sui Agent Wallet?
在 OpenClaw 或 Claude Code 对话框中运行命令「/install sui-agent-wallet」即可一键安装,无需额外配置。
Sui Agent Wallet 是免费的吗?
是的,Sui Agent Wallet 完全免费(开源免费),可自由下载、安装和使用。
Sui Agent Wallet 支持哪些平台?
Sui Agent Wallet 跨平台运行,可在任意部署了 OpenClaw / Claude Code 的环境中使用(cross-platform)。
谁开发了 Sui Agent Wallet?
由 Eason Chen(@easonc13)开发并维护,当前版本 v1.0.3。
推荐 Skills