Bifrost Slpx skills
v0.1.3Bifrost SLPx liquid staking via @bifrostio/slpx-cli: exchange rates, APY (with optional DeFiLlama LP pools), TVL, holders, protocol info; vETH balances, rede...
⭐ 0· 106·0 current·0 all-time
byBifrost@bifrost-io
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
OpenClaw
Benign
high confidencePurpose & Capability
Name/description match the runtime instructions: the SKILL.md consistently instructs the agent to call the @bifrostio/slpx-cli (via npx) for queries (rate/apy/info) and vETH on‑chain flows (balance/mint/redeem/claim). The tokens, chains, and CLI examples align with the claimed coverage.
Instruction Scope
The instructions are narrowly scoped to running the CLI with --json and interpreting JSON output, with an explicit pre‑tx checklist and inversion prompts before any broadcast. The skill also includes guidance for configuring a private key (BIFROST_SKILL_PRIVATEKEY) and warning not to paste raw keys into chat; that guidance is reasonable but slightly ambiguous about whether the agent should run shell detection commands itself or instruct the user to run them. Ensure the agent does not attempt to collect raw keys or run arbitrary commands in the user's environment without explicit consent.
Install Mechanism
The skill is instruction-only (no install spec), but it repeatedly instructs agents to run npx -y @bifrostio/slpx-cli. Using npx means code is fetched and executed from npm at runtime — expected for a CLI wrapper but higher risk than pure local tooling. The SKILL.md does advise pinning a dist‑tag if needed; verify package provenance and consider pinning the package/version before running.
Credentials
No required env vars are declared by the skill; the only sensitive env referenced is BIFROST_SKILL_PRIVATEKEY for signing on‑chain transactions. That single credential is proportional to the claimed on‑chain write capabilities. The skill explicitly warns not to paste keys into chat and includes a pre‑tx checklist forbidding private key leakage.
Persistence & Privilege
The skill does not request always:true and does not ask to modify other skills or global agent settings. Autonomous invocation is allowed (platform default) but is not combined with broad unexplained privileges or credential requests.
Assessment
This skill is a coherent wrapper around the @bifrostio/slpx-cli and behaves as expected for a liquid‑staking CLI. Before installing or letting an agent run it: (1) confirm the npm package is the official @bifrostio/slpx-cli (check the package page and source repo), (2) prefer pinning an explicit version or dist‑tag rather than always using unpinned npx -y to reduce supply‑chain risk, (3) run npx commands yourself in a controlled terminal when possible instead of allowing the agent to execute them remotely, (4) never paste private keys into chat — follow the skill’s private‑key guidance and only set BIFROST_SKILL_PRIVATEKEY locally in your shell, and (5) only approve broadcasting transactions after the pre‑tx checklist is cleared and you explicitly confirm the action. If you want extra assurance, review the upstream CLI code/repo and the package release integrity before use.Like a lobster shell, security has layers — review code before you run it.
latestvk974wcqzejb59p072rxw5wmvcn83mcr1
License
MIT-0
Free to use, modify, and redistribute. No attribution required.