WalletPilot

v0.1.0

Universal browser wallet automation for AI agents. Supports 10 wallets including MetaMask, Rabby, Phantom, Trust Wallet, OKX, Coinbase, and more. EVM + Solana. Configurable guardrails with spend limits, chain allowlists, and approval thresholds.

⭐ 1· 1.6k·0 current·0 all-time

byFrancesco@andreolf

OpenClaw Prompt Flow

Install with OpenClaw

Best for remote or guided setup. Copy the exact prompt, then paste it into OpenClaw for andreolf/wallet-pilot.

Previewing Install & Setup.

Prompt PreviewInstall & Setup

Install the skill "WalletPilot" (andreolf/wallet-pilot) from ClawHub.
Skill page: https://clawhub.ai/andreolf/wallet-pilot
Keep the work scoped to this skill only.
After install, inspect the skill metadata and help me finish setup.
Use only the metadata you can verify from ClawHub; do not invent missing requirements.
Ask before making any broader environment changes.

Command Line

CLI Commands

Use the direct CLI path if you want to install manually and keep every step visible.

OpenClaw CLI

Bare skill slug

openclaw skills install wallet-pilot

ClawHub CLI

Package manager switcher

npx clawhub@latest install wallet-pilot

Security Scan

VirusTotal

Benign

View report →

OpenClaw

Suspicious

medium confidence

Purpose & Capability

The SKILL.md describes a full TypeScript/Playwright codebase and a plugin architecture (src/, adapters, example files) but the published skill contains only the SKILL.md and no code, package.json, or binaries. It also tells the user to run npm install and npm run setup even though no install spec or code files are provided. That mismatch makes it impossible to verify the implementation and is inconsistent with the claimed capabilities.

Instruction Scope

The runtime instructions direct automated wallet actions (connect, swap, send, sign) and to create and persist a browser profile that contains a new seed-backed wallet. These actions are inherently high-risk. The instructions are also vague about exactly what the 'setup' script does, where secrets (seed phrase, private keys) will be stored, and what human confirmations are required — giving broad discretion that could lead to irreversible fund loss if misused.

ℹ

Install Mechanism

No formal install spec is included (instruction-only). SKILL.md tells the user to run npm install and npx playwright install chromium, which would pull packages from npm based on a package.json that is not present in the package. That pattern shifts trust to an external, unverified codebase the user must obtain; it is not itself an automated install step in the skill bundle but it creates a practical install risk if the user follows the instructions without first inspecting code.

ℹ

Credentials

The skill requests no environment variables or external credentials in metadata, which is proportionate. However, the functionality requires filesystem access to browser profiles and will involve private keys/seed phrases stored locally by the browser extension — the SKILL.md does not specify safe handling or encryption of those secrets. No declared env vars is not evidence of safety here because secrets live in the browser profile.

✓

Persistence & Privilege

The skill does not request always:true and does not declare elevated platform privileges. Autonomous model invocation is allowed by default (disable-model-invocation: false), which is normal for skills; combined with the ability to sign/send transactions this increases impact but is not itself an incoherence.

What to consider before installing

Treat this skill as high-risk and incomplete. Do not run any npm or setup scripts from unknown sources or import an unreviewed repo into a machine with real funds. Before using: (1) request the full source repository and package.json so you or a reviewer can audit the code and npm dependencies; (2) verify how and where the wallet seed/private keys are stored and insist on human confirmation for any transaction above a tiny test amount; (3) only test on an air-gapped or throwaway VM with a freshly funded agent wallet holding minimal funds; (4) require a review of the 'setup' script and any automation that can call sign/send to ensure it enforces the stated spend limits and allowlist checks; (5) prefer well-known, open-source alternatives or official integrations with provenance. If you cannot obtain auditable source code and a clear explanation of secret handling, do not install or use this skill with real assets.

Like a lobster shell, security has layers — review code before you run it.

automationvk970sb5ays9cnfdypfvxjw9w9n80fatrbackpackvk970sb5ays9cnfdypfvxjw9w9n80fatrblockchainvk970sb5ays9cnfdypfvxjw9w9n80fatrbrowservk970sb5ays9cnfdypfvxjw9w9n80fatrcoinbasevk970sb5ays9cnfdypfvxjw9w9n80fatrcryptovk970sb5ays9cnfdypfvxjw9w9n80fatrdefivk970sb5ays9cnfdypfvxjw9w9n80fatrethereumvk970sb5ays9cnfdypfvxjw9w9n80fatrexodusvk970sb5ays9cnfdypfvxjw9w9n80fatrlatestvk970sb5ays9cnfdypfvxjw9w9n80fatrmetamaskvk970sb5ays9cnfdypfvxjw9w9n80fatrokxvk970sb5ays9cnfdypfvxjw9w9n80fatrphantomvk970sb5ays9cnfdypfvxjw9w9n80fatrrabbyvk970sb5ays9cnfdypfvxjw9w9n80fatrrainbowvk970sb5ays9cnfdypfvxjw9w9n80fatrsolanavk970sb5ays9cnfdypfvxjw9w9n80fatrtrust-walletvk970sb5ays9cnfdypfvxjw9w9n80fatrwalletvk970sb5ays9cnfdypfvxjw9w9n80fatrweb3vk970sb5ays9cnfdypfvxjw9w9n80fatrzerionvk970sb5ays9cnfdypfvxjw9w9n80fatr

1.6kdownloads

1stars

1versions

Updated 1mo ago

v0.1.0

MIT-0

WalletPilot

Universal browser wallet automation for AI agents. Control any browser-based crypto wallet with configurable permission guardrails.

Supported Wallets

Wallet	EVM	Solana	Users
MetaMask	✅	-	100M+
Rabby	✅	-	1M+
Coinbase Wallet	✅	-	1M+
Rainbow	✅	-	500K+
Phantom	✅	✅	3M+
Trust Wallet	✅	✅	1M+
Zerion	✅	✅	100K+
Exodus	✅	✅	100K+
OKX Wallet	✅	✅	1M+
Backpack	✅	✅	500K+

Overview

WalletPilot allows AI agents to interact with dapps and execute transactions through any supported browser wallet. All operations are subject to user-defined constraints.

Security Model: The agent controls a separate wallet in an isolated browser profile. Never use your main wallet.

Setup

1. Install Dependencies

cd wallet-pilot
npm install
npx playwright install chromium

2. Configure Wallet Provider

Edit config.json to select your wallet:

{
  "wallet": {
    "provider": "metamask",  // or: rabby, coinbase, rainbow, phantom
    "extensionPath": null    // auto-detect from Chrome, or provide path
  }
}

3. Create Agent Wallet Profile

npm run setup

This opens a browser where you:

Install/setup your chosen wallet extension
Create a NEW wallet (fresh seed phrase)
The profile is saved for future automation

4. Fund the Wallet

Transfer a small amount to your agent wallet:

Native token for gas (0.01-0.05 ETH/SOL recommended)
Tokens for operations (start small, e.g., $50 USDC)

5. Configure Permissions

Edit permissions.json:

{
  "constraints": {
    "spendLimit": {
      "daily": "50000000",
      "perTx": "10000000"
    },
    "allowedChains": [1, 137, 42161, 8453],
    "allowedProtocols": ["0x...uniswap", "0x...1inch"]
  }
}

Available Actions

Connect to Dapp

connect <dapp-url>

Navigates to dapp and connects the agent wallet.

Execute Swap

swap <amount> <token-in> for <token-out> [on <dex>]

Executes a token swap on an allowed DEX.

Send Tokens

send <amount> <token> to <address>

Sends tokens to an address (within spend limits).

Sign Message

sign <message>

Signs an arbitrary message.

Check Balance

balance [token]

Returns wallet balances.

View History

history [count]

Shows recent agent transactions.

Constraints

Constraint	Description
`spendLimit.daily`	Max USD value per 24h period
`spendLimit.perTx`	Max USD value per transaction
`allowedChains`	Whitelisted chain IDs
`allowedProtocols`	Whitelisted contract addresses
`blockedMethods`	Forbidden function selectors
`requireApproval.above`	Threshold requiring user confirmation

Adding New Wallets

WalletPilot uses a plugin architecture. To add a new wallet:

Create a new adapter in src/wallets/
Implement the WalletAdapter interface
Add selectors for the wallet's UI elements
Register in src/wallets/index.ts

See src/wallets/metamask.ts for reference implementation.

Safety

Isolated Profile: Agent uses separate browser profile
Separate Wallet: Completely separate from your main wallet
Spend Caps: Hard limits prevent runaway spending
Protocol Allowlist: Only whitelisted contracts can be called
Full Logging: Every transaction is logged
Revocation: Set "revoked": true to disable all actions

Architecture

src/
├── index.ts              # Main entry point
├── browser.ts            # Playwright browser management
├── guard.ts              # Permission enforcement
├── logger.ts             # Transaction logging
├── price.ts              # USD price estimation
├── types.ts              # TypeScript types
├── config.ts             # Configuration loading
└── wallets/
    ├── index.ts          # Wallet adapter registry
    ├── adapter.ts        # Base adapter interface
    ├── metamask.ts       # MetaMask
    ├── rabby.ts          # Rabby
    ├── coinbase.ts       # Coinbase Wallet
    ├── rainbow.ts        # Rainbow
    ├── phantom.ts        # Phantom
    ├── trust.ts          # Trust Wallet
    ├── zerion.ts         # Zerion
    ├── exodus.ts         # Exodus
    ├── okx.ts            # OKX Wallet
    └── backpack.ts       # Backpack

Comparison: WalletPilot vs MetaMask-only

Feature	WalletPilot	MetaMask Agent Wallet
Wallets	5+ supported	MetaMask only
Chains	EVM + Solana	EVM only
Setup	Choose your wallet	MetaMask required
Complexity	Higher	Lower
Use case	Multi-wallet orgs	MM-only users

Choose WalletPilot if you need flexibility across wallets or Solana support. Choose MetaMask Agent Wallet for simpler MetaMask-only setup.

Comments

Loading comments...