Pay Bills
WarnAudited by ClawScan on May 10, 2026.
Overview
The skill matches its stated bill-payment purpose, but it can spend wallet funds and stores a reusable login token locally, so it needs careful review before use.
Only use this skill if you trust the publisher and the Bleon API domain. Treat phone numbers, OTPs, PINs, and session tokens as sensitive. Before any purchase, manually confirm the phone number, product, price, and wallet balance, and clear the saved session token when finished or when using a shared device.
Findings (3)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
If the agent proceeds incorrectly or from an ambiguous request, it could buy the wrong product, send it to the wrong phone number, or spend wallet funds.
This is an authenticated order-creation workflow that spends wallet balance. In the supplied artifact excerpt, the workflow proceeds to POST /orders without a visible mandatory user confirmation, spending cap, or reversibility guidance.
POST /orders [auth] { "type":"data", "payment_method":"wallet", "trx_id":"<run: node pay-bills-skill/generate-order-id.js>", ... "data": { "phone":"08031234567", "data_id": 42 } }Require explicit user confirmation of recipient, product, amount, and wallet balance immediately before every order, and document that the agent must not place orders from inferred intent alone.
Anyone or any process that can read the skill directory, command output, or agent transcript may be able to reuse the session token to access the account until it expires or is cleared.
The helper saves a bearer session token to a local plaintext file and reprints it. That token is used by the skill for authenticated balance and order actions, while the metadata declares no primary credential.
const TOKEN_FILE = path.join(__dirname, ".session_token") ... fs.writeFileSync(TOKEN_FILE, token, "utf-8") ... process.stdout.write(JSON.stringify({ loggedIn, sessionToken: token }))Declare the credential requirement, store tokens in an OS credential store or a permission-restricted file, avoid printing tokens except where strictly necessary, and encourage clearing the token after use.
It is harder for users to verify who maintains the skill, whether the API domain is legitimate, or where to report issues.
There is no remote installer or dependency chain shown, but the provenance and project homepage are not supplied for a skill that performs payment-related account actions.
Source: unknown; Homepage: none; No install spec — this is an instruction-only skill.
Use only if you trust the publisher and service domain; the publisher should add a verifiable source or homepage.