by 安全扫描
OpenClaw
可疑
medium confidenceThe skill's instructions align with a gasless agent wallet, but it references and requires private keys and environment variables that are not declared in the metadata and relies on fetching an unpinned npm package at runtime — together these inconsistencies raise meaningful risk for fund exfiltration or unintended autonomous transactions.
评估建议
This skill documents how to generate and use private keys and to perform on-chain transactions, but the metadata does not declare the sensitive environment variables it references and it relies on running an unpinned npm package via npx. Before installing or using it: (1) do not provide any real private keys to an agent unless you fully trust the source; (2) prefer using 'managed' wallets with human passkey control rather than 'unmanaged' autonomous wallets; (3) insist on a pinned package versio...详细分析 ▾
ℹ 用途与能力
The name and description match the SKILL.md: it is a tool for creating and using non-custodial wallets on Base and Solana. The operations shown (key generation, wallet creation, signing transactions) are consistent with that purpose. However, some operational requirements (private keys, AGENTWALLET_AGENT_SOL, AGENT_PRIVATE_KEY, WALLET_ADDRESS) appear in the instructions but are not declared in the skill metadata, which is an inconsistency.
⚠ 指令范围
SKILL.md instructs the agent to generate and use private keys, read environment variables (e.g., AGENT_PRIVATE_KEY, AGENTWALLET_AGENT_SOL, WALLET_ADDRESS), and perform on-chain transactions (including autonomous operation for 'unmanaged' wallets). The metadata does not declare these env variables or any explicit limits on agent actions. The instructions explicitly handle extremely sensitive secrets (private keys) and enable actions that move funds; this expands the agent's scope beyond what the metadata documents.
ℹ 安装机制
The skill is instruction-only with no install spec, but the README uses npx @agntos/agentwallet. That implies runtime fetching of a remote npm package. The package name is unpinned (no version) and the skill provides no provenance or homepage. Relying on npx at runtime without pinned versions or vetted source increases supply-chain risk.
⚠ 凭证需求
The instructions require high-sensitivity secrets (private keys) and reference environment variables, yet the skill metadata lists no required env vars or primary credential. Asking an agent to handle private keys is proportionate for this wallet purpose, but the omission from metadata and lack of guidance on secure secret provisioning (beyond general warnings) is a problematic mismatch.
ℹ 持久化与权限
The skill is not set to always:true and is user-invocable (normal). However, the SKILL.md explicitly describes 'unmanaged' wallets that are 'fully autonomous' and encourages the agent to sign transactions programmatically. Combined with the ability for the agent to invoke skills autonomously (default), this creates a high-impact capability (moving funds) even if the skill itself does not request persistent privileges or system-wide config changes.
安全有层次,运行前请审查代码。
运行时依赖
无特殊依赖
版本
latestv1.0.02026/3/10
AgentWallet 1.0.0 — Initial Release - Launches non-custodial smart wallets for agents on Base (EVM) and Solana with onchain spending limits and passkey-based human approvals. - Includes free gas to enable immediate transactions for new wallets. - Provides CLI tools for generating keypairs, creating wallets, setting up budgets/limits, and performing transactions. - Managed (with human oversight) and unmanaged (autonomous) wallet modes supported. - Security best practices emphasized throughout: private key safety, verification steps, and emergency pause feature. - Supports per-token daily and per-transaction limits and easy escalation of budget requests via secure human authentication.
● 无害
安装命令
点击复制官方npx clawhub@latest install agentwallet-cli
镜像加速npx clawhub@latest install agentwallet-cli --registry https://cn.longxiaskill.com