Ra Pay
PassAudited by ClawScan on May 10, 2026.
Overview
This is a coherent payment-CLI skill with explicit confirmation safeguards, but installing it means trusting an external npm CLI with real payment authority and local account sessions.
Install only if you intentionally want an agent-assisted payment CLI. Before sending money, verify the npm package source, complete setup yourself, protect the local session, and require explicit user approval for every confirmed payment.
Findings (4)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
A mistaken or rushed confirmation could charge the user's card and send funds to the wrong recipient.
The skill can direct an agent to execute real USD payments. The artifacts also require a preview and explicit confirmation, so this is purpose-aligned but high-impact.
Only after the user explicitly confirms, add the `--confirm` flag... The `--confirm` flag executes the payment.
Never automate `--confirm`; always show the preview, verify the recipient account, amount, fee, and business purpose, and get fresh explicit user approval.
The installed CLI may be able to access payment-account functions using the user's saved session.
The skill uses payment credentials, bank-account linking, and a local session, which are expected for this payment platform but sensitive.
`ra add-card` saves a credit card via Stripe Checkout... `ra link-bank` connects a bank account via Stripe Connect... Once complete, the CLI stores the session locally.
Set up only the accounts needed, protect the local machine, review Stripe/Ra Pay account access, and know how to unlink or revoke the session if no longer needed.
Installing the package gives external CLI code local execution in a sensitive financial workflow.
The reviewed skill is instruction-only and depends on an external npm package for the actual payment behavior. That dependency is purpose-aligned, but its code is not included in these artifacts.
install: - node: "@rapay/cli"
Install only from the official npm package, consider pinning a reviewed version, and verify the package provenance before using it for payments.
A user or agent could rely on the wrong counterparty identity or a modified onboarding message when coordinating payments.
The skill contemplates agents forwarding onboarding material to other agents, which is purpose-aligned for agent-to-agent payments but introduces identity and trust-boundary considerations.
Agent-to-agent transaction scripts — Shareable onboarding scripts that a buyer agent can forward to a seller agent...
Verify the other party and recipient account ID through a trusted channel, and do not treat received scripts or messages as authoritative without review.