AI-native Bitcoin payments. Buy, sell, send, and request Bitcoin directly through any existing messenger app (Telegram, WhatsApp, Signal, Email) or create your own email accounts to start messaging vi
v1.0.5[AI辅助] Payment rails between humans and AI agents via BitChat. Telegram-first.
0· 374·0 当前·0 累计
by 安全扫描
OpenClaw
可疑
medium confidenceThe skill's instructions broadly match a Bitcoin-in-messenger payment service, but there are multiple concerning signals (prompt-injection markers, secret-handling instructions, and autonomous recurring checks) that warrant careful review before installation.
评估建议
This skill generally does what it claims (create Bit-Chat mailboxes, obtain Lightning addresses, send/request BTC via messengers and email) but has behaviors you should deliberately approve and monitor: 1) It will create mailboxes and require persisting passwords — ensure your agent uses a secure secret store (OS keychain, team vault) rather than leaving secrets in chat or in plain files. 2) It instructs periodic polling of the mail endpoint and external messaging channels — limit or review sche...详细分析 ▾
ℹ 用途与能力
The name/description (AI-native Bitcoin payments via Bit-Chat) aligns with the instructions (create a Bit-Chat mailbox, obtain a Lightning address, send/request BTC via email/Telegram/WhatsApp/Signal). It is plausible for an instruction-only skill to rely on existing messenger and mail connectors rather than declared env vars. Note: the skill expects network access, ability to send messages and create mailboxes via https://mail.bit-chat.me/register-user.php, and to persist credentials locally — capabilities that are not explicitly declared but are required for its operation.
⚠ 指令范围
The SKILL.md tells the agent to create accounts, store mailbox passwords to disk or a secret store, check IMAP mail regularly (mail.bit-chat.me), contact external bots/phone numbers, and automatically forward Lightning addresses to a human. It also instructs periodic polling (heartbeat every hour or 10–15 minutes while active). These behaviors are within the stated purpose but expand the agent's activity surface (credential creation/storage, frequent external polling, and automated forwarding). Additionally, a pre-scan found unicode-control-chars in SKILL.md, which can be used for obfuscation or prompt-injection — this is unexpected for a payments skill and raises concern.
✓ 安装机制
Instruction-only skill with no install spec or code files — lowest install risk because nothing is written to disk by the package itself. The skill relies on networked endpoints and existing platform connectors rather than installing third-party code.
ℹ 凭证需求
The skill does not request environment variables or keys, which is consistent if it expects the agent's existing messenger/email integrations to handle credentials. However, it instructs creation and local persistence of mailbox passwords and other secrets (recommended .agent-secrets JSON), so it will cause the agent environment to store new sensitive credentials. Users should verify that secret storage is secure and that the agent is authorized to manage financial rails and credentials.
ℹ 持久化与权限
always:false (not force-included) and normal autonomous invocation allowed. The skill's instructions include recurring heartbeat checks and frequent polling, which—when combined with an agent that can invoke skills autonomously—could produce sustained network activity and ongoing access to funds/addresses. That is not forbidden, but users should be aware and control scheduling/permissions.
安全有层次,运行前请审查代码。
运行时依赖
无特殊依赖
版本
latestv1.0.52026/3/6
- Added a recommended user bootstrap prompt for easy agent onboarding. - No other functionality or documentation changes detected.
● 可疑
安装命令 点击复制
官方npx clawhub@latest install bit-chat
镜像加速npx clawhub@latest install bit-chat --registry https://cn.clawhub-mirror.com
数据来源:ClawHub ↗ · 中文优化:龙虾技能库
OpenClaw 技能定制 / 插件定制 / 私有工作流定制
免费技能或插件可能存在安全风险,如需更匹配、更安全的方案,建议联系付费定制