ClawHub

Deploy Contracts

v1.0.0

Safely deploys Move contracts to Aptos networks (devnet, testnet, mainnet) with pre-deployment verification. Triggers on: 'deploy contract', 'publish to test...

0· 113·0 current·0 all-time
by@iskysun96
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Benign
View report →
OpenClawOpenClaw
Benign
high confidence
Purpose & Capability
The name/description match the SKILL.md contents: it instructs use of the aptos CLI (aptos move compile, deploy-object, publish, config, init, faucets, etc.) and pre-deployment checks for Move contracts. No unrelated services, binaries, or credentials are requested. One minor note: the metadata lists author: aptos-labs while the skill source/homepage are unknown — this may be a harmless attribution, but users should confirm the origin if provenance matters.
Instruction Scope
The instructions stay on-task: compilation, testing, coverage, using devnet/testnet/mainnet, and saving the deployed object address. They direct using aptos CLI and a web faucet for testnet funding. They do not instruct reading arbitrary system files or exfiltrating data. They do, necessarily, rely on the aptos CLI and existing local profiles/keys (e.g., aptos init, config show-profiles), so following the instructions will interact with local Aptos key/config material — which is expected for a deployment workflow.
Install Mechanism
Instruction-only skill with no install spec and no code files — lowest-risk install surface. There are no downloads, third-party packages, or archive extraction steps in the manifest.
Credentials
The skill declares no required environment variables, no credentials, and no config paths. The runtime instructions rely on the user's aptos CLI configuration and keys (standard for deployments) but do not request unrelated secrets. Users should be aware that running the recommended commands will use whatever keys/profiles are present on the host.
Persistence & Privilege
always is false and the skill is user-invocable only. There is no indication the skill modifies other skills or requests permanent presence. It instructs CLI commands that will modify local Aptos config (expected behavior for deployment).
Assessment
This skill appears coherent for its stated purpose. Before using it: (1) confirm the skill's source/author if you require provenance (metadata lists aptos-labs but no homepage/source is provided); (2) run the steps manually first (especially aptos init and deploy commands) so you control which local key/profile is used; (3) be cautious with --assume-yes flags which auto-accept prompts; (4) never expose private keys or copy them into untrusted environments—ensure your CLI profiles point to the intended testnet/devnet/mainnet accounts; (5) follow the checklist items (security audit, tests, coverage) before pushing to mainnet. If you want a higher assurance about origin, ask the publisher for a homepage, repo link, or verification that this is an official Aptos Labs resource.

Like a lobster shell, security has layers — review code before you run it.

latestvk973snxkw5dj2yntfyt1gbphkh8359yk

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Comments