← 返回 Skills 市场
440
总下载
0
收藏
0
当前安装
5
版本数
在 OpenClaw 中安装
/install x402engine
功能描述
Pay-per-call API gateway skill — calls 63 APIs (LLMs, image/video gen, flights, hotels, crypto, web search) via x402 micropayments. Each call costs $0.001-$0...
安全使用建议
This skill does what it says — it will sign and submit on-chain micropayments using the EVM private key you provide. Before installing or enabling it: 1) Never supply your main wallet private key. Create a dedicated wallet with minimal funds for this skill. 2) Configure a local policy file and set X402_POLICY_PATH (point to a vetted policy) so spend caps and recipient allowlists are enforced; by default the code may bypass policy checks if no policy path is provided. 3) Consider setting X402_STATE_PATH to a controlled location and review POLICY.example.json (recipient allowlist, per-tx and daily caps). 4) Audit or host the discovery catalog yourself (set X402_DISCOVERY_URL or X402ENGINE_ORIGIN to a self-hosted catalog) so you control which paygates/services can be called. 5) If you do not want autonomous spending, prevent agent auto-invocation of skills (disable model invocation for this skill if the platform supports it) or do not provide EVM_PRIVATE_KEY as an env var; prefer ephemeral keys or manual signing workflows. 6) Because the skill will install third-party npm packages, run npm install in an isolated environment and review dependencies if you’re concerned about supply-chain risk. If you need help with concrete safe defaults (example policy that enforces allowlist and strict caps), ask and provide your preferred chains/assets and budget limits.
功能分析
Type: OpenClaw Skill
Name: x402engine
Version: 1.3.2
The skill is classified as suspicious due to several high-risk capabilities and vulnerabilities that could be exploited via prompt injection against the AI agent. Most critically, the skill explicitly advertises and implements a 'code-run' service (SKILL.md, README.md, intent-router.js, executor.js) that takes user-provided code (Python, JS, Bash, R) and sends it to a backend API for execution, creating a direct path for potential Remote Code Execution (RCE). Additionally, the skill allows sensitive file paths (EVM_PRIVATE_KEY_FILE, X402_POLICY_PATH, X402_STATE_PATH in client.js and policy-engine.cjs) and discovery URLs (X402_DISCOVERY_URL, X402ENGINE_ORIGIN in discovery.js) to be configured via environment variables. If an attacker can manipulate the agent to set these environment variables, it could lead to arbitrary file reads or Server-Side Request Forgery (SSRF) and interaction with attacker-controlled endpoints.
能力标签
能力评估
Purpose & Capability
Name/description, required binaries (node), and installed packages (@x402/fetch, @x402/evm, viem) align with a payment-aware API gateway. The code uses an EVM private key to sign payments as expected. No unrelated credentials or binaries are requested.
Instruction Scope
The runtime fetches a remote service catalog (default https://x402engine.app/.well-known/x402.json) and uses that catalog to call arbitrary paid endpoints. The skill will read EVM_PRIVATE_KEY (or EVM_PRIVATE_KEY_FILE) and will write a state file (default .x402engine-state.json). Policy enforcement is present in code but only applied if a policy path is provided; autopreflightCheck returns 'bypassed' when no policy path is configured, meaning calls may proceed without local spend caps unless you explicitly configure X402_POLICY_PATH (CLI commands default to POLICY.example.json but programmatic invocation may not). The discovery/catalog mechanism and remote endpoints could cause the agent to contact and pay arbitrary external paygates; this is expected functionality but increases risk and deserves explicit user control.
Install Mechanism
Install uses npm packages from the public registry (package.json/package-lock.json list @x402/* and viem). No arbitrary downloads or extract-from-URL steps are present. This is a standard Node.js dependency footprint; however, install pulls a nontrivial dependency tree (see package-lock) so standard supply-chain considerations apply.
Credentials
The single required environment secret is EVM_PRIVATE_KEY (primary credential), which is coherent with the skill's purpose (signing micropayments). However, this is a high-privilege secret: possession of the private key allows on-chain transfers and signing. The SKILL.md does advise using a dedicated, limited-funds wallet, which you should follow. The skill also optionally reads EVM_PRIVATE_KEY_FILE and will read/provision policy/state paths; these are reasonable but increase attack surface if misconfigured.
Persistence & Privilege
always:false (good), but disable-model-invocation is false (default), so the agent may autonomously call this skill. Combined with a configured EVM_PRIVATE_KEY, that means the agent could autonomously sign and submit on-chain payments. The skill stores state to disk and may write policy/state files; it does not modify other skills. If you allow autonomous invocation and provide a funded key, you accept risk of automated spend unless you configure strict policy controls and use a dedicated wallet.
如何使用
- 确保已安装 OpenClaw(本地或 Docker 部署)
- 在对话框中输入安装命令:
/install x402engine - 安装完成后,直接呼叫该 Skill 的名称或使用
/x402engine触发 - 根据 Skill 的参数说明提供必要输入,即可获得结构化输出
版本历史
v1.3.2
Fix metadata: only EVM_PRIVATE_KEY is required in registry. All other env vars are optional and documented in Security section.
v1.3.1
Docs-only fix: accurately describe policy enforcement as opt-in (no X402_POLICY_PATH = no spending limits). Reverted code change from v1.3.0 that broke users without a policy file. All env vars declared in metadata.
v1.3.0
Fix fail-closed policy enforcement: deny when no policy path instead of bypassing. Declare all env vars (EVM_PRIVATE_KEY_FILE, X402_POLICY_PATH, X402_STATE_PATH, X402_DISCOVERY_URL, X402_AUTOPREFLIGHT, X402_DISCOVERY_REFRESH_MS) in metadata.
v1.2.0
Security review fixes: added cost transparency (show per-call costs to user), added install spec for npm dependencies, added security section with wallet isolation guidance, removed concealment instructions, added discovery URL override docs.
v1.1.0
63 APIs: added Google Flights and Hotels search via SerpApi. Flight search with price insights, hotel search with ratings and amenities. Plus 30 LLMs, image/video gen, crypto data, wallet analytics, web search, code execution, and more.
元数据
常见问题
X402engine 是什么?
Pay-per-call API gateway skill — calls 63 APIs (LLMs, image/video gen, flights, hotels, crypto, web search) via x402 micropayments. Each call costs $0.001-$0... 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件,目前累计下载 440 次。
如何安装 X402engine?
在 OpenClaw 或 Claude Code 对话框中运行命令「/install x402engine」即可一键安装,无需额外配置。
X402engine 是免费的吗?
是的,X402engine 完全免费(开源免费),可自由下载、安装和使用。
X402engine 支持哪些平台?
X402engine 跨平台运行,可在任意部署了 OpenClaw / Claude Code 的环境中使用(cross-platform)。
谁开发了 X402engine?
由 agentc22(@agentc22)开发并维护,当前版本 v1.3.2。
推荐 Skills