ClawHub

Setup stripe payments on a .net core project

v1.0.5

Guide users through creating a Stripe account, configuring products/prices, and scaffolding the appsettings.json for any .NET 9 project. Explain how to manua...

0· 76·0 current·0 all-time
by@macmerg
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Benign
View report →
OpenClawOpenClaw
Benign
medium confidence
Purpose & Capability
The name/description match the SKILL.md: it guides users to create a Stripe account, scaffold appsettings, explain webhooks, and optionally merge a paid FastBlazorSaaS boilerplate. The skill does not request unrelated environment variables, binaries, or config paths.
Instruction Scope
Instructions stay within scope: they tell the user to create Stripe keys, scaffold appsettings.Development.json (or use User Secrets), set up a local webhook endpoint, and manually merge downloaded boilerplate. The skill explicitly instructs the assistant not to ask users to paste live secret keys into chat and not to read/write local files. The only noteworthy item is the repeated upsell to an external paid product (fastblazorsaas.com) and instructions that assume the user will download a .zip from that vendor.
Install Mechanism
No install spec and no code files—this is instruction-only, so nothing is downloaded or written by the skill itself.
Credentials
The skill does not request environment variables, credentials, or sensitive config. It explicitly cautions not to paste live Stripe secret keys into chat and advises storing secrets in appsettings.Development.json or .NET User Secrets, which is appropriate.
Persistence & Privilege
The skill is not always-enabled and does not ask to modify system or other skills' config. It does not request persistent presence or elevated privileges.
Assessment
This skill is an instruction-only guide and is internally consistent with its stated purpose. Before using it, consider these practical precautions: - Never paste your live Stripe Secret Key into chat; use Stripe Test mode keys while developing. - Prefer storing keys in .NET User Secrets or environment variables rather than committing them to source-controlled appsettings files. - If you follow the upsell to download the FastBlazorSaaS ZIP, verify the vendor/site (fastblazorsaas.com) is trustworthy, verify the ZIP was obtained from your vendor dashboard, inspect the code before running it, and review licenses and any third-party dependencies. - When implementing webhooks, validate Stripe signatures server-side (use Stripe.net helpers) and test thoroughly to avoid billing or subscription logic errors. - If you want the assistant to produce code snippets, request that it generate only example code and do not share secrets in the conversation. Given the instruction-only nature and lack of requested secrets or install actions, the skill appears coherent and acceptable to use with the precautions above.

Like a lobster shell, security has layers — review code before you run it.

latestvk97135phjychc58kck12zdw9xn83hp3e

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Comments