x402 Private Web Tools

Private web tools for AI agents — search, scrape, and screenshot the web with x402 micropayments (USDC on Base). Zero logging, no API keys, no accounts. Pay...

This appears to be an instruction-only client that installs npm packages and requires you to supply an EVM private key to pay per request. Before installing: (1) verify the npm packages (@x402/* and viem) and the GitHub repo referenced for the MCP server are legitimate and reviewed; (2) prefer saving the private key to a file with restrictive permissions (600) rather than exporting it into your shell long-term; (3) use an ephemeral wallet funded with minimal USDC/ETH (so a compromised key has limited impact); (4) note the wallet-gen script mentions Base Sepolia (testnet) while the README says Base mainnet — confirm which network is intended before sending funds; (5) be aware npm install will pull code from the registry into your home dir (supply-chain risk). If you are uncomfortable with those risks or cannot verify the package sources, do not install or fund a real mainnet wallet.

Type: OpenClaw Skill Name: x402-private-web-tools Version: 1.0.0 The skill is classified as suspicious due to the powerful capabilities of the `scripts/x402-fetch.mjs` script, which allows making arbitrary HTTP requests to user-provided URLs and saving the response body to arbitrary file paths via the `--save` option. While these features are necessary for the skill's stated purpose (web scraping, screenshots), they represent a significant attack surface for prompt injection against the AI agent. A malicious prompt could instruct the agent to fetch content from an attacker-controlled server and save it to a sensitive system file, potentially leading to arbitrary file write vulnerabilities or data exfiltration if combined with other techniques. There is no clear evidence of intentional malicious behavior (e.g., hardcoded exfiltration, backdoors), but the broad capabilities pose a high risk of misuse.