LNBits Wallet wtih QR Code
PassAudited by ClawScan on May 10, 2026.
Overview
This is a straightforward LNbits wallet helper, but it needs an LNbits admin key and can send Lightning payments after explicit confirmation.
Before installing, understand that this skill can manage a Lightning wallet and pay invoices using your LNbits admin key. Use a dedicated low-balance wallet, verify every decoded invoice before approving payment, keep the admin key out of chat, and use a trusted LNbits server for real funds.
Findings (3)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
If the user confirms the wrong invoice, the assistant could send Lightning funds, which may be irreversible.
The skill can execute a wallet payment, but the artifact explicitly requires decode, balance check, and user confirmation before using the pay command.
**⚠️ REQUIRES CONFIRMATION**: Decode first, verify balance, ask user, then execute.
Only approve payments after checking the decoded amount, memo, and destination; keep limited funds in the wallet used with the assistant.
Anyone or any process with this key may be able to access or spend from the configured LNbits wallet.
The skill uses an LNbits admin key, which is expected for paying invoices and managing the wallet but is a sensitive credential.
`LNBITS_API_KEY`: Your LNbits wallet's Admin Key.
Use a dedicated LNbits wallet with limited balance, store the admin key securely in environment configuration, and do not paste it into chat.
Installing an unpinned dependency can pull whatever version is current at install time.
The QR feature depends on a third-party Python package without a pinned version. This is normal for QR generation but still a supply-chain consideration.
"pip":["qrcode[pil]"]
Install from a trusted Python package index and consider pinning the dependency version in controlled environments.