Write Contracts
v1.0.0Generates secure Aptos Move V2 smart contracts with Object model, Digital Asset integration, security patterns, and storage type guidance. Includes comprehen...
⭐ 0· 101·0 current·0 all-time
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
OpenClaw
Benign
high confidencePurpose & Capability
The name, description, SKILL.md, and reference files all focus on Aptos Move V2 smart-contract patterns (object model, NFTs, storage decision tree, gas guidance) and the requested resources are minimal (no env vars, no binaries, no installs). This is consistent with a code-generation/helper skill. One mismatch to note: metadata lists author: 'aptos-labs' and priority: 'critical' but the skill's source and homepage are 'unknown'/'none' and the registry owner ID is unrelated — potential impersonation or missing provenance (informational, not functional).
Instruction Scope
SKILL.md contains concrete Move design rules, code examples, and a storage-decision Q&A workflow for asking users about storage use-cases. The instructions do not direct the agent to read system files, environment variables, external endpoints, or any unrelated data; they stay within the domain of generating Move code and asking storage questions. The SKILL does recommend using a separate 'security-audit' skill before deployment (reasonable).
Install Mechanism
No install spec and no code files that execute on the host (instruction-only). This is low-risk: nothing will be downloaded or written to disk by an installer step.
Credentials
The skill does not request any environment variables, credentials, or config paths. It requires no secrets and its guidance is about on-chain code structure and best practices — credential requests would be disproportionate but none are present.
Persistence & Privilege
Flags are default: always=false, user-invocable=true, disable-model-invocation=false. The skill does not request permanent presence or elevated privileges and does not modify other skills' configs. Autonomous invocation is allowed by platform defaults and is not by itself problematic here.
Assessment
This skill appears coherent and low-risk as an instruction-only Move contract helper, but take these precautions before using it to generate deployable code: 1) Verify author/source: the SKILL.md claims 'aptos-labs' but no homepage or source is provided — treat that as unverified attribution. 2) Manually review any generated Move modules before publishing or running; the templates are opinionated and may not match your security model. 3) Run a proper security audit and unit/integration tests (as the skill itself recommends) and deploy first to testnet. 4) Never paste or store private keys, node credentials, or other secrets into prompts when interacting with code-generation skills. 5) If you need provenance, ask the publisher for source repo or contact info before trusting the skill for production use.Like a lobster shell, security has layers — review code before you run it.
latestvk976n7e9btz7xggyrdbxdxpwqh834cje
License
MIT-0
Free to use, modify, and redistribute. No attribution required.