Vincent - Wallet
PassAudited by VirusTotal on May 12, 2026.
Overview
Type: OpenClaw Skill Name: agentwallet Version: 1.0.70 The skill 'agentwallet' provides high-risk financial capabilities, allowing an AI agent to manage an EVM wallet, perform token swaps, and sign raw messages via the '@vincentai/cli' package. While SKILL.md outlines a security model with server-side policy enforcement and human-in-the-loop approvals via 'heyvincent.ai', the inherent risks of autonomous fund management and the storage of sensitive API keys in '${OPENCLAW_STATE_DIR}' meet the threshold for a suspicious classification. Additionally, the use of 'npx' to execute remote code and the 'agent-first onboarding' model, which allows a window of operation without policy constraints, present significant security considerations.
Findings (0)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
The agent may be able to initiate real blockchain transactions within the wallet policies, which can have financial consequences.
The skill grants the agent a CLI tool path for wallet operations that can move assets or interact with contracts. This matches the stated purpose, but the impact is high if policies or prompts are misconfigured.
allowed-tools: Read, Write, Bash(npx:@vincentai/cli*) ... transfer tokens, do swaps, and interact with smart contracts
Before use, set conservative spending limits, address allowlists, token allowlists, and approval thresholds; test with small amounts first.
Anyone or any process that can use the stored scoped key may be able to perform actions allowed by the wallet policies.
The skill uses a persistent scoped API key that can authorize wallet actions. The artifact discloses this and describes policy enforcement and revocation, so it is purpose-aligned but privileged.
the agent creates its own wallet at runtime by calling the Vincent API, which returns a scoped API key ... The CLI stores the returned API key automatically
Protect the configured credential directory, keep policies narrow, and revoke or rotate the key if the environment is shared or compromised.
A future CLI package update could change behavior without the skill artifact itself changing.
The documented workflow runs an external npm CLI package at the latest version. This is expected for the integration, but unpinned runtime tooling can change independently of the reviewed SKILL.md.
npx @vincentai/cli@latest secret list --type EVM_WALLET
Prefer a pinned and reviewed CLI version for high-value wallets, and verify the package source before use.
Users may over-trust the service if they treat the security claims as independently verified by this skill review.
The skill makes strong security assurances. They may be true, but the provided artifact does not include audit reports or backend code, so users should verify before relying on them for significant funds.
Vincent is open source and audited ... continuous security audits covering key management, policy enforcement, transaction signing, and API authentication
Review the linked source, audit materials, and hosted-service trust model before funding the wallet with meaningful assets.