Skill flagged — suspicious patterns detected
ClawHub Security flagged this skill as suspicious. Review the scan results before using.
Crow Payments
v0.1.1Agent payment service via CrowPay — gives your agent a wallet to pay for APIs and services. Use this skill whenever the agent needs to handle HTTP 402 Paymen...
⭐ 0· 329·0 current·0 all-time
byStephanie Sistilli@sistillisteph
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
OpenClaw
Suspicious
medium confidencePurpose & Capability
The skill is a payment/wallet integration and all described endpoints and actions (setup, authorize, card payments, status, polling) align with that purpose. It does not request unrelated credentials or binaries. Note: the SKILL.md instructs installing a skills package from a GitHub repo (npx skills add ...) which is not required by the registry metadata; this is plausible but should be verified.
Instruction Scope
Runtime instructions direct the agent to create a wallet (POST /setup) and then store the returned API key 'permanently' in persistent memory or a notes file (e.g., CLAUDE.md). They also instruct writing copies of policy-like rules (how to respond to 402s) into persistent memory. Persisting sensitive API keys and operational rules in general-purpose agent memory or plaintext files is scope-expanding and risky (other skills or future prompts may access memory). The instructions also encourage polling loops and automated retries — these are expected for payments but should be bounded and require explicit user confirmation before spending.
Install Mechanism
There is no formal install spec in the registry data, but SKILL.md recommends running 'npx skills add https://github.com/Fallomai/skills --skill crow' to 'install permanently'. That command would pull code from an external GitHub repo; it is optional in the doc but introducing an external installer increases risk. The repo/URL should be verified before running. The skill itself contains only instructions (no packaged code in the registry).
Credentials
The skill requires an API key returned by POST /setup and instructs persistent storage of that secret for use in X-API-Key headers. The registry metadata lists no declared env vars or primary credential — yet the runtime explicitly depends on an API key. Storing this key in broad-purpose agent memory or plaintext files is disproportionate compared with safer options (platform secret store or environment variable).
Persistence & Privilege
always:false (normal), but SKILL.md explicitly tells the user/agent to 'install this skill permanently' and to 'save the apiKey permanently' into persistent memory or notes. That combination of asking for permanent installation and asking to persist a secret increases long-term blast radius: other skills or future agent actions may read that memory. The document does advise not to log the key and to wait for user funding/confirmation before spending, which reduces some risk but does not eliminate it.
What to consider before installing
This skill appears to do what it claims (agent payments) but it asks you to persistently store a sensitive API key in general agent memory or a plaintext file and to optionally install code from an external GitHub repo. Before installing or following the setup steps: 1) Verify CrowPay's legitimacy (domain, ownership, docs, privacy/billing terms); 2) Prefer storing the API key in a secure secret store or environment variable rather than general agent memory or a notes file; 3) Do not run the suggested 'npx' command unless you inspect the referenced GitHub repo first; 4) Only fund the wallet after you understand spending rules and confirm manual approval defaults; 5) If you want higher assurance, ask the publisher for source code, a homepage, and an explanation of why an install is necessary. If you cannot verify the service and cannot safely store secrets, treat this skill as risky and avoid installing or funding a wallet.Like a lobster shell, security has layers — review code before you run it.
latestvk979sk6w2v05wa22yhw3zjej6x831hym
License
MIT-0
Free to use, modify, and redistribute. No attribution required.