Simmer Wallet Setup
PassAudited by VirusTotal on May 12, 2026.
Overview
Type: OpenClaw Skill Name: simmer-wallet-setup Version: 0.2.1 The skill utilizes a high-risk 'curl | bash' pattern to install the OWS CLI from docs.openwallet.sh and explicitly manages sensitive 'WALLET_PRIVATE_KEY' environment variables. While these actions are consistent with the stated purpose of setting up a self-custody trading wallet, the execution of unverified remote scripts and the handling of raw private keys represent significant security risks and a large attack surface without evidence of intentional malice.
Findings (0)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
If followed too broadly, an agent could gain the ability to approve spending and place real-money trades with less user review than expected.
The documented flow enables signing and broadcasting financial approvals and later API-only trades without showing approval limits, revocation steps, or an explicit human confirmation gate.
`client.set_approvals() # one-time per chain — signs locally via OWS, fully headless` ... `After both run once, all trading is API-only.`
Before running these calls, confirm exact approval scopes and amounts, use OWS policy caps and allowlists, and require explicit user confirmation for wallet registration, approvals, and trades.
A compromised installer or package could affect the local wallet environment and potentially access sensitive wallet material.
The wallet setup depends on downloading and executing remote installer/package code without a pinned version, checksum, or reviewed source in the provided artifacts.
`curl -fsSL https://docs.openwallet.sh/install.sh | bash` ... `pip install 'simmer-sdk[ows]'`
Verify the OWS installer and Simmer SDK provenance, prefer pinned versions/checksums, and consider installing in a clean environment before funding the wallet.
Anyone or any process with these secrets may be able to access Simmer account functions or sign wallet actions.
The skill discloses that it uses a Simmer API key and may use a raw wallet private key; this is expected for a self-custody wallet setup but is highly sensitive authority.
`primaryEnv: SIMMER_API_KEY` ... `WALLET_PRIVATE_KEY` ... `Polygon EVM private key. Set only if you chose Path B (external raw key).`
Prefer the OWS vault path over raw private keys, keep secrets out of chat/logs, use least-privilege API keys where available, and rotate/revoke keys if exposure is suspected.