← 返回 Skills 市场

Zhentan

Name: Zhentan
Author: koshikraj

作者 koshikraj · GitHub ↗ · v1.0.2 · MIT-0

cross-platform ⚠ suspicious

186

总下载

当前安装

版本数

在 OpenClaw 中安装

/install zhentan

功能描述

Zhentan is your personal onchain security agent and co-signer. It monitors pending multisig transactions, screens them against behavioral patterns and securi...

安全使用建议

This skill is coherently designed for a remote co-signer but hands a single secret to an external service (api.zhentan.me). Before installing: 1) Verify the operator (homepage, company, audits, and reputation). 2) Treat AGENT_SECRET as high‑privilege — don’t reuse it, ensure it can be rotated/revoked, and limit its scope if possible. 3) Prefer testing with a non-production Safe or tiny-value transactions first. 4) Ask for documentation: what exactly the secret authorizes, what logs/events are generated, how proofs of execution are provided, and whether the service returns verifiable on‑chain tx data. 5) If you cannot verify the service or the secret’s limits, do not provide your signing credentials — consider a self-hosted or audited alternative.

功能分析

Type: OpenClaw Skill Name: zhentan Version: 1.0.2 The 'zhentan' skill acts as a security co-signer for blockchain transactions, interacting with a remote API at api.zhentan.me. While its stated purpose is security monitoring, the SKILL.md file contains multiple instructions for the AI agent to construct and execute shell commands (curl) using unsanitized user inputs (e.g., transaction IDs, Safe addresses, and Telegram user IDs). This creates a significant risk for shell command injection if the agent processes malicious input from a user. Additionally, the skill requires a sensitive AGENT_SECRET which is transmitted to the external domain, and while this is part of its functional design, the high-privilege nature of the tool combined with insecure command templates warrants caution.

能力评估

ℹ Purpose & Capability

Name/description (onchain co-signer) align with the actions described in SKILL.md: the skill only needs to call an external API to approve/reject/execute Safe multisig transactions, and it requires curl and a secret to authenticate. However, provenance is unknown (no homepage, unverified owner) and the single AGENT_SECRET is presented as the authority to request executions — this is powerful and not explained in detail.

ℹ Instruction Scope

Runtime instructions stay within the stated purpose: they only call https://api.zhentan.me endpoints and read session context (origin.from) to build callerId. The instructions require embedding AGENT_SECRET in every request and instruct the agent to send transaction approvals and notifications. There is no instruction to read unrelated local files or other credentials. The SKILL.md lacks details about error handling, verifying server responses, or cryptographic assurances that the remote API actually performed signing.

✓ Install Mechanism

Instruction-only skill with no install spec or code files — nothing is written to disk by the skill itself. Required binary is only curl, which is proportionate to making HTTP requests.

⚠ Credentials

Requires a single environment secret AGENT_SECRET as the primary credential. That is plausible for authenticating to a remote co-signer, but the skill provides no information about the scope, least privilege, rotation, or how that secret is minted. If AGENT_SECRET grants the ability to sign/execute on-chain transactions, it is a high‑value credential and deserves stronger justification and operational controls.

✓ Persistence & Privilege

Skill does not request always:true, does not modify other skills or system configuration, and is user-invocable. Autonomous invocation (disable-model-invocation:false) is the platform default and is not in itself flagged, though combined with a high-privilege secret it increases risk.

如何使用

确保已安装 OpenClaw（本地或 Docker 部署）
在对话框中输入安装命令：/install zhentan
安装完成后，直接呼叫该 Skill 的名称或使用 /zhentan 触发
根据 Skill 的参数说明提供必要输入，即可获得结构化输出

版本历史

v1.0.2

Changes for multi-user - Removed dmScore

v1.0.1

**Summary:** Adds authenticated API requests and user identity tracking; removes deprecated script. - All API requests now require the AGENT_SECRET for authentication via the Authorization header. - Each request must include the Telegram caller’s user ID ("callerId": "telegram:<origin.from>") for auditability. - Replaced previous transaction execution flow (sign-and-execute.js) with a direct /execute API endpoint. - Required "node" runtime dependency removed; only curl and AGENT_SECRET environment variable are needed. - Documented updated request/response patterns and error handling across all interaction flows.

v1.0.0

Initial release of zhentan, your personal onchain security agent and co-signer. - Monitors pending multisig transactions, screens them with behavioral and external risk data, and auto-signs safe transactions. - Flags borderline or suspicious activity for manual review; blocks clearly risky transactions. - Provides owner commands via chat/Telegram to approve, reject, review, and analyze transactions. - Includes in-depth risk analysis tools and audit history for transactions and events. - Supports rules management and invoice detection/processing for streamlined transaction workflows. - Requires Node.js and curl; configurable via SERVER_URL environment variable.

元数据

Slug zhentan

版本 1.0.2

许可证 MIT-0

累计安装 0

当前安装数 0

历史版本数 3

常见问题

Zhentan 是什么？

Zhentan is your personal onchain security agent and co-signer. It monitors pending multisig transactions, screens them against behavioral patterns and securi... 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件，目前累计下载 186 次。

如何安装 Zhentan？

在 OpenClaw 或 Claude Code 对话框中运行命令「/install zhentan」即可一键安装，无需额外配置。

Zhentan 是免费的吗？

是的，Zhentan 完全免费，采用 MIT-0 许可证，可自由下载、安装和使用。

Zhentan 支持哪些平台？

Zhentan 跨平台运行，可在任意部署了 OpenClaw / Claude Code 的环境中使用（cross-platform）。

谁开发了 Zhentan？

由 koshikraj（@koshikraj）开发并维护，当前版本 v1.0.2。