Gate DEX Trade — 技能工具

Name: Gate DEX Trade — 技能工具
Author: Gate

Gate

Gate DEX Trade — 技能工具

v1.0.3

Gate DEX swap EXECUTION skill. For on-chain token exchange transactions that MODIFY blockchain state: swap, buy, sell, exchange, convert tokens, cross-chain...

0· 250·0 当前·0 累计

by @gate-exchange (Gate)·MIT-0

加密货币存储部署 MCP工具

下载技能包

License

MIT-0

最后更新

2026/4/11

安全扫描

VirusTotal

可疑

查看报告

OpenClaw

可疑

medium confidence

The skill's stated purpose (DEX trade execution) matches most of its code and instructions, but there are multiple mismatches and risky instructions (reading private keys from workspace files, writing config files with embedded default credentials, and modifying local AI-platform configs) that increase the chance of accidental data exposure or misuse.

评估建议

This skill can perform real on-chain trades and includes scripts and an interactive installer that write config files and link the skill into local AI-platform directories. Key things to consider before installing: - Do NOT paste or store your private keys into this workspace or into config files unless you fully trust and inspected the signing scripts and binaries. The skill explicitly tells the agent it may read private keys from pasted text, file paths, or workspace files (.env) — that is a ...

详细分析 ▾

ℹ 用途与能力

The skill is an execution-focused DEX/trade skill and includes helper scripts for API calls, allowance checks, and multi-chain signing — these are coherent with its purpose. However, the registry metadata claims no required credentials/config paths while the runtime repeatedly expects/uses an MCP token and an AK/SK config file (~/.gate-dex-openapi/config.json). That mismatch (declared 'none' vs instructions that require credentials/config) is worth noting.

⚠ 指令范围

SKILL.md explicitly instructs the agent to obtain private keys (via paste, file path, or by reading workspace files/.env) for signing and to read/write user config files (e.g., ~/.gate-dex-openapi/config.json, .cursor/.mcp.json). Asking agents to read arbitrary workspace files and .env for private keys is high risk (data-exfiltration or accidental upload). The skill also requires following external runtime rules (via a GitHub URL) which the agent must fetch before any tool calls.

ℹ 安装机制

No package install spec is declared (instruction-only) but an install.sh is bundled and will create config files, symlink the skill into local platform skill dirs, and create routing rules. The installer writes into user home and project dirs and ships prebuilt binaries (swap-checkin-*). Executing bundled binaries and an interactive installer is plausible for this skill but raises the usual risk surface (unsigned binaries, local execution).

⚠ 凭证需求

Registry lists no required env vars, but the runtime requires mcp_token (MCP mode) and/or AK/SK in ~/.gate-dex-openapi/config.json. The repo also contains example/default AK/SK values in references/_shared.md and install.sh writes a default OpenAPI config into the user's home. The skill asks for private keys and allows reading them from local files — broad access to sensitive secrets that is functional for signing, but not explicitly declared in metadata and therefore disproportionate without careful user review.

ℹ 持久化与权限

Skill does not request always:true and is user-invocable (normal). The installer writes persistent config and platform routing rules (e.g., .cursor/skills link, .cursor/rules, .mcp.json, opencode.json) which will increase how often the skill is considered for trading intents. That persistent integration is coherent for a trading skill but increases blast radius if misused.

安全有层次，运行前请审查代码。

License

MIT-0

可自由使用、修改和再分发，无需署名。

查看条款 ↗

运行时依赖

无特殊依赖

版本

latestv1.0.32026/3/13

- Updated MCP tool calls to use new operations: `dex_tx_swap_quote`, `dex_tx_swap_prepare`, and staged swap signing tools. - Added local binary execution details for swap check-in (`swap-checkin-mac`, `swap-checkin-linux`, `swap-checkin-win.exe`). - Clarified MCP mode workflow, including new tool names and binary usage. - Improved security rules and trigger scenarios descriptions. - Added/corrected documentation in references and tools/tx-checkin/README.md; removed deprecated OpenAPI reference file.

● 可疑

安装命令点击复制

官方npx clawhub@latest install gate-dex-trade

镜像加速npx clawhub@latest install gate-dex-trade --registry https://cn.clawhub-mirror.com

技能文档

Pure Routing Layer — Swap EXECUTION only. Every operation produces an on-chain transaction. All specifications in references/.

General Rules

⚠️ STOP — You MUST read and strictly follow the shared runtime rules before proceeding. Do NOT select or call any tool until all rules are read. These rules have the highest priority. → Read gate-runtime-rules.md

Trigger Scenarios: Use when the user wants to execute a token exchange that modifies blockchain state:

Swap: "swap ETH for USDT", "exchange 100 USDC to DAI", "convert my BNB"
Buy/Sell: "buy ETH", "sell my USDT", "purchase SOL"
Cross-chain: "bridge ETH from Arbitrum to Base", "cross-chain swap"
Swap quote: "how much USDT will I get for 1 ETH" (with intent to trade)

Project convention — MCP only (this workspace)

Do not use OpenAPI for swap unless user explicitly asks OpenAPI/AK/SK. MCP unavailable → references/setup.md only.

NOT this skill (common misroutes):

"what is the price of ETH" → gate-dex-market (read-only lookup, no trade intent)
"check my swap history" → gate-dex-wallet (account query)
"transfer ETH to 0xABC..." → gate-dex-wallet (direct transfer, not swap)
"approve contract" (outside swap context) → gate-dex-wallet (DApp interaction)

Routing Flow

User triggers trading intent
  ↓
Step 1: Has user explicitly specified a mode?
  ├─ Explicitly mentions "OpenAPI" / "AK/SK" / "API Key" → OpenAPI mode
  ├─ Otherwise → MCP only (Step 2)
  └─ Not specified → Step 2
  ↓
Step 2: Is this a cross-chain swap?
  ├─ Cross-chain → Must use MCP mode (OpenAPI doesn't support cross-chain), proceed to Step 3
  └─ Same-chain / uncertain → Step 3
  ↓
Step 3: Gate Wallet MCP Server Discovery & Detection
  a) Scan configured MCP Server list for Servers providing dex_tx_swap_quote, dex_tx_swap_prepare, and staged swap signing tools
  b) If found → Record server identifier, verify with:
     CallMcpTool(server="", toolName="dex_chain_config", arguments={chain: "ETH"})
     ├─ Success → MCP mode
     └─ Failed → Step 4
  c) No matching Server → Step 4
  ↓
Step 4: MCP unavailable → setup guide only (references/setup.md), no OpenAPI fallback

Mode Dispatch

MCP Mode

Read and strictly follow references/mcp.md, execute according to its complete workflow.

Includes: connection detection, authentication (mcp_token), MCP Resource/tool calls (dex_tx_swap_quote / dex_tx_swap_prepare / dex_tx_swap_checkin_preview / staged sign-submit / dex_tx_swap_detail), local prebuilt swap-checkin-mac / swap-checkin-linux / swap-checkin-win.exe (Windows amd64) binary execution, token address resolution, native_in/native_out rules, three-step confirmation gateway (SOP), quote templates, risk warnings, cross-Skill collaboration, security rules.

OpenAPI Mode (Progressive Loading)

Default off in this workspace — explicit OpenAPI request only.

Limitation: OpenAPI mode only supports same-chain Swap, does not support cross-chain exchanges.

Load files progressively — only load what the current step needs:

Always load first: references/openapi/_shared.md — env detection, credentials, API call method (via helper script)
Then load based on swap stage:

Stage	Load File	When
Query (chain/gas)	`openapi/quote.md`	User asks about chains or gas
Swap: get quote	`openapi/quote.md` + `openapi/sop.md`	User initiates swap
Swap: build tx	`openapi/build.md`	After quote confirmed (SOP Step 2)
Swap: sign tx	`openapi/sign.md`	After build confirmed (SOP Step 3)
Swap: submit	`openapi/submit.md`	After signing complete
History	`openapi/submit.md`	User asks for swap history

On error: openapi/errors.md

Legacy monolithic file preserved at references/openapi.md for backward compatibility.

MCP Server Setup Guide

When MCP detection fails and a setup guide is needed, read and display references/setup.md. Show only the configuration for the user's current platform when identifiable. Display at most once per session.

Supported Chains

Actual supported chains are determined by runtime API/Resource returns:

MCP Mode: swap://supported_chains Resource
OpenAPI Mode: trade.swap.chain interface

For uncommon chains: MCP calls dex_chain_config, OpenAPI calls trade.swap.chain.

Security Rules

Three-step confirmation gateway: Trading pair confirmation → quote display → signature authorization — cannot be skipped
Balance pre-check: Mandatory verification of asset and Gas token sufficiency before trading
Risk warnings: Forced warning for exchange value difference > 5%, high slippage (> 5%) MEV attack warnings
Authentication & credentials: Follow §3 of gate-runtime-rules.md; MCP uses mcp_token, OpenAPI uses AK/SK — never mix
No OpenAPI fallback when MCP fails (this project)

Pure Routing Layer — Swap EXECUTION only. Every operation produces an on-chain transaction. All specifications in references/.

General Rules

⚠️ STOP — You MUST read and strictly follow the shared runtime rules before proceeding. Do NOT select or call any tool until all rules are read. These rules have the highest priority. → Read gate-runtime-rules.md

Trigger Scenarios: Use when the user wants to execute a token exchange that modifies blockchain state:

Swap: "swap ETH for USDT", "exchange 100 USDC to DAI", "convert my BNB"
Buy/Sell: "buy ETH", "sell my USDT", "purchase SOL"
Cross-chain: "bridge ETH from Arbitrum to Base", "cross-chain swap"
Swap quote: "how much USDT will I get for 1 ETH" (with intent to trade)

Project convention — MCP only (this workspace)

Do not use OpenAPI for swap unless user explicitly asks OpenAPI/AK/SK. MCP unavailable → references/setup.md only.

NOT this skill (common misroutes):

"what is the price of ETH" → gate-dex-market (read-only lookup, no trade intent)
"check my swap history" → gate-dex-wallet (account query)
"transfer ETH to 0xABC..." → gate-dex-wallet (direct transfer, not swap)
"approve contract" (outside swap context) → gate-dex-wallet (DApp interaction)

Routing Flow

User triggers trading intent
  ↓
Step 1: Has user explicitly specified a mode?
  ├─ Explicitly mentions "OpenAPI" / "AK/SK" / "API Key" → OpenAPI mode
  ├─ Otherwise → MCP only (Step 2)
  └─ Not specified → Step 2
  ↓
Step 2: Is this a cross-chain swap?
  ├─ Cross-chain → Must use MCP mode (OpenAPI doesn't support cross-chain), proceed to Step 3
  └─ Same-chain / uncertain → Step 3
  ↓
Step 3: Gate Wallet MCP Server Discovery & Detection
  a) Scan configured MCP Server list for Servers providing dex_tx_swap_quote, dex_tx_swap_prepare, and staged swap signing tools
  b) If found → Record server identifier, verify with:
     CallMcpTool(server="", toolName="dex_chain_config", arguments={chain: "ETH"})
     ├─ Success → MCP mode
     └─ Failed → Step 4
  c) No matching Server → Step 4
  ↓
Step 4: MCP unavailable → setup guide only (references/setup.md), no OpenAPI fallback

Mode Dispatch

MCP Mode

Read and strictly follow references/mcp.md, execute according to its complete workflow.

Includes: connection detection, authentication (mcp_token), MCP Resource/tool calls (dex_tx_swap_quote / dex_tx_swap_prepare / dex_tx_swap_checkin_preview / staged sign-submit / dex_tx_swap_detail), local prebuilt swap-checkin-mac / swap-checkin-linux / swap-checkin-win.exe (Windows amd64) binary execution, token address resolution, native_in/native_out rules, three-step confirmation gateway (SOP), quote templates, risk warnings, cross-Skill collaboration, security rules.

OpenAPI Mode (Progressive Loading)

Default off in this workspace — explicit OpenAPI request only.

Limitation: OpenAPI mode only supports same-chain Swap, does not support cross-chain exchanges.

Load files progressively — only load what the current step needs:

Always load first: references/openapi/_shared.md — env detection, credentials, API call method (via helper script)
Then load based on swap stage:

Stage	Load File	When
Query (chain/gas)	`openapi/quote.md`	User asks about chains or gas
Swap: get quote	`openapi/quote.md` + `openapi/sop.md`	User initiates swap
Swap: build tx	`openapi/build.md`	After quote confirmed (SOP Step 2)
Swap: sign tx	`openapi/sign.md`	After build confirmed (SOP Step 3)
Swap: submit	`openapi/submit.md`	After signing complete
History	`openapi/submit.md`	User asks for swap history

On error: openapi/errors.md

Legacy monolithic file preserved at references/openapi.md for backward compatibility.

MCP Server Setup Guide

When MCP detection fails and a setup guide is needed, read and display references/setup.md. Show only the configuration for the user's current platform when identifiable. Display at most once per session.

Supported Chains

Actual supported chains are determined by runtime API/Resource returns:

MCP Mode: swap://supported_chains Resource
OpenAPI Mode: trade.swap.chain interface

For uncommon chains: MCP calls dex_chain_config, OpenAPI calls trade.swap.chain.

Security Rules

Three-step confirmation gateway: Trading pair confirmation → quote display → signature authorization — cannot be skipped
Balance pre-check: Mandatory verification of asset and Gas token sufficiency before trading
Risk warnings: Forced warning for exchange value difference > 5%, high slippage (> 5%) MEV attack warnings
Authentication & credentials: Follow §3 of gate-runtime-rules.md; MCP uses mcp_token, OpenAPI uses AK/SK — never mix
No OpenAPI fallback when MCP fails (this project)

数据来源：ClawHub ↗ · 中文优化：龙虾技能库

OpenClaw 技能定制 / 插件定制 / 私有工作流定制

免费技能或插件可能存在安全风险，如需更匹配、更安全的方案，建议联系付费定制

了解定制服务

License

运行时依赖

版本

安装命令 点击复制

技能文档

General Rules

Project convention — MCP only (this workspace)

Routing Flow

Mode Dispatch

MCP Mode

OpenAPI Mode (Progressive Loading)

MCP Server Setup Guide

Supported Chains

Security Rules

General Rules

Project convention — MCP only (this workspace)

Routing Flow

Mode Dispatch

MCP Mode

OpenAPI Mode (Progressive Loading)

MCP Server Setup Guide

Supported Chains

Security Rules

安装命令点击复制