← 返回 Skills 市场
327
总下载
0
收藏
0
当前安装
1
版本数
在 OpenClaw 中安装
/install tilt-protocol
功能描述
Create and manage tokenized stock investment funds on Tilt Protocol (Robinhood L2). Self-custodied — you own your wallet, your keys, and your vaults.
安全使用建议
What to consider before installing/running:
- The skill expects you to create and expose a private key (TILT_PRIVATE_KEY). Treat this as sensitive: avoid keeping long-term funds in a key created for a third-party skill, and avoid passing private keys on the command line (many OSes expose command-line args to other users/processes).
- The skill relies heavily on a centralized helper API at bowstring-backend-production.up.railway.app. That service receives your wallet address, can mint/register tokens, and stores strategy/trade notes. Verify that domain is owned and operated by the legitimate Tilt Protocol team (it does not match the declared homepage tiltprotocol.com). If you cannot verify ownership, do not register or post real wallet data to it.
- SKILL.md instructs you to curl a remote 'latest skill' file and write it to /tmp. That lets the remote host change instructions you will later follow. Only run such fetches after manually reviewing the fetched file’s contents and confirming the source.
- Prefer safer key handling: use a hardware wallet or local keystore, avoid exporting raw private keys into environment variables, and avoid CLI flags that embed keys. If you must test, use ephemeral testnet keys with zero real funds.
- Verify all contract addresses, RPC endpoints, and the VaultFactory/Token addresses before sending transactions. Consider running interactions through your own controlled backend rather than a public Railway app.
Given these mismatches and the centralized remote-updater/helper API, treat this skill as requiring explicit trust; if you cannot validate the backend and ownership, do not run it with real assets or secret keys.
功能分析
Type: OpenClaw Skill
Name: tilt-protocol
Version: 1.0.0
The skill features a self-updating mechanism in `SKILL.md` that instructs the agent to download and review new instructions from a remote API (bowstring-backend-production.up.railway.app), creating a high-risk vector for remote prompt injection or command execution. It manages sensitive credentials ($TILT_PRIVATE_KEY) for on-chain trading and requires broad 'shell' and 'network' permissions. While the behavior aligns with the stated purpose of a DeFi fund manager on the Robinhood L2 testnet, the dynamic instruction fetching and use of an external backend for core logic are significant security vulnerabilities.
能力评估
Purpose & Capability
Name/description (AI fund manager on Tilt Protocol) match the instructions (create wallets, deploy tokens, create vaults, on-chain txs). However the registry declares no required environment variables or primary credential while the SKILL.md clearly expects and instructs use of a private key (TILT_PRIVATE_KEY), RPC (TILT_RPC), and API base (TILT_API_BASE). That metadata mismatch is incoherent and hides a sensitive requirement.
Instruction Scope
Runtime instructions tell the agent to generate/store a private key and to call many endpoints on a centralized helper API (bowstring-backend-production.up.railway.app) for registration, faucet, token deployment, posting strategy updates, and trade-notes. They also instruct you to curl a remote 'latest skill' file and write it to /tmp — a remote-updater pattern that can change runtime behavior. These operations are functional for the described purpose but introduce significant trust and remote-control surface.
Install Mechanism
Skill is instruction-only (no install spec) which lowers disk footprint. It asks you to install Foundry via the official paradigm foundry script (common for blockchain work) and to install jq via package managers. The higher-risk action is the repeated curl to a Railway-hosted backend (not an obvious official Tilt domain) used for both API calls and fetching skill updates — this is a non-standard endpoint for 'official' protocol operations and worth verifying.
Credentials
The skill does not declare required env vars in registry metadata but the instructions require a highly sensitive TILT_PRIVATE_KEY and advise exporting it and using it on command lines (cast --private-key $TILT_PRIVATE_KEY). Passing private keys on CLI and storing them in environment variables are both risky. The skill also expects TILT_API_BASE and TILT_RPC to be set; absence of declared credentials is an incoherence and a security red flag.
Persistence & Privilege
The skill does not request 'always: true' and is user-invocable. It does, however, instruct periodic networked actions (registering, posting updates) and a remote skill fetch which can alter behavior between runs — this is not a privilege escalation by itself but increases the need to trust the remote API and upstream host.
如何使用
- 确保已安装 OpenClaw(本地或 Docker 部署)
- 在对话框中输入安装命令:
/install tilt-protocol - 安装完成后,直接呼叫该 Skill 的名称或使用
/tilt-protocol触发 - 根据 Skill 的参数说明提供必要输入,即可获得结构化输出
版本历史
v1.0.0
Initial release: self-custodied AI fund manager for tokenized stock portfolios on Robinhood L2
元数据
常见问题
Tilt Protocol — AI Fund Manager 是什么?
Create and manage tokenized stock investment funds on Tilt Protocol (Robinhood L2). Self-custodied — you own your wallet, your keys, and your vaults. 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件,目前累计下载 327 次。
如何安装 Tilt Protocol — AI Fund Manager?
在 OpenClaw 或 Claude Code 对话框中运行命令「/install tilt-protocol」即可一键安装,无需额外配置。
Tilt Protocol — AI Fund Manager 是免费的吗?
是的,Tilt Protocol — AI Fund Manager 完全免费(开源免费),可自由下载、安装和使用。
Tilt Protocol — AI Fund Manager 支持哪些平台?
Tilt Protocol — AI Fund Manager 跨平台运行,可在任意部署了 OpenClaw / Claude Code 的环境中使用(cross-platform)。
谁开发了 Tilt Protocol — AI Fund Manager?
由 rontoTech(@rontotech)开发并维护,当前版本 v1.0.0。
推荐 Skills