Proxygate
v0.2.1ProxyGate CLI — the Stripe for AI Agents. Use this skill whenever the user mentions ProxyGate, proxy requests, API marketplace, USDC payments, Solana wallet,...
⭐ 0· 80·0 current·0 all-time
by@jwelten
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
OpenClaw
Benign
medium confidencePurpose & Capability
Name/description match the SKILL.md: the file is a router that chooses sub-skills for setup, status, buying, selling, jobs, and updates. Nothing in the skill requires unrelated access or capabilities.
Instruction Scope
Instructions are limited to routing behavior and quick CLI reference. The doc references a config path (~/.proxygate/config.json), ed25519 wallet signatures, gateway URL, and docs — the router does not instruct reading those files itself, but it signals that sub-skills will likely access wallet/keypair and network endpoints.
Install Mechanism
No install spec and no code files — lowest-risk instruction-only skill. Nothing will be written to disk by this skill itself.
Credentials
This router declares no required env vars or credentials (none listed). However, the SKILL.md mentions config file and keypair path and payment flows (USDC on Solana), so dependent sub-skills will plausibly require private keys, wallet access, or API tokens; review those sub-skills before granting sensitive credentials.
Persistence & Privilege
always is false and the skill does not request or modify system-wide settings. It only directs the agent to invoke other skills and does not claim persistent installation privileges.
Assessment
This router skill by itself is coherent and low-risk: it just tells the agent which sub-skill to invoke for ProxyGate tasks. Before installing or enabling it, review the sub-skills it routes to (pg-setup, pg-buy, pg-sell, pg-status, pg-jobs, pg-update). Those sub-skills are the ones likely to request sensitive access (Solana wallet/keypair, USDC payment authority, gateway API tokens, or to run CLI binaries). Do not provide private keys or wallet seed phrases to the agent. Verify the gateway URL and docs (https://gateway.proxygate.ai) independently and ensure those endpoints are legitimate. If you allow autonomous invocation (the platform default), be especially cautious about enabling payment or wallet-capable sub-skills without manual approval. If you want higher assurance, ask to review the code/instructions for each sub-skill or require explicit user confirmation before any payment or wallet operation.Like a lobster shell, security has layers — review code before you run it.
latestvk971nntmt5czc0t3gq0s36h7bd83a2r0
License
MIT-0
Free to use, modify, and redistribute. No attribution required.