Element NFT Drops

v1.0.2

Use when the user mentions Element plus drops, NFT creation, NFT collection launch, mint setup, sale stages, prereveal media, preview media, or publishing/pa...

⭐ 0· 40·0 current·0 all-time

by@element-som

OpenClaw Prompt Flow

Install with OpenClaw

Best for remote or guided setup. Copy the exact prompt, then paste it into OpenClaw for element-som/element-nft-drops.

Previewing Install & Setup.

Prompt PreviewInstall & Setup

Install the skill "Element NFT Drops" (element-som/element-nft-drops) from ClawHub.
Skill page: https://clawhub.ai/element-som/element-nft-drops
Keep the work scoped to this skill only.
After install, inspect the skill metadata and help me finish setup.
Required env vars: ELEMENT_WALLET_PRIVATE_KEY
Required binaries: node, npm
Use only the metadata you can verify from ClawHub; do not invent missing requirements.
Ask before making any broader environment changes.

Command Line

CLI Commands

Use the direct CLI path if you want to install manually and keep every step visible.

OpenClaw CLI

Bare skill slug

openclaw skills install element-nft-drops

ClawHub CLI

Package manager switcher

npx clawhub@latest install element-nft-drops

Security Scan

Capability signals

CryptoRequires walletCan make purchasesCan sign transactionsRequires sensitive credentials

These labels describe what authority the skill may exercise. They are separate from suspicious or malicious moderation verdicts.

VirusTotal

Benign

View report →

OpenClaw

Benign

high confidence

✓

Purpose & Capability

The name/description (Element drop lifecycle: create, preview, update, publish) align with the packaged scripts and references. The code implements collection creation, preview, upload guards, onchain transaction sending, Element login signing, chain resolution, and related workflows — all appropriate for Element Drop lifecycle work. Minor mismatch: SKILL.md header lists jq as a required binary while registry metadata and the packaged scripts expect node/npm (and execution uses npx/tsx). This appears to be a small documentation inconsistency rather than functionality that doesn't belong.

✓

Instruction Scope

SKILL.md limits actions to drop lifecycle tasks, requires preview-before-execute for state-changing flows, and forbids uploading secrets. The scripts read local image files, validate them (no symlinks, size/headers checked), sign messages/transactions locally, and call Element APIs and RPC endpoints. Those file reads and network calls are within the stated purpose (image uploads, API calls, onchain broadcasts). The instructions explicitly forbid pasting the private key into chat and require using the env var, and the code signs locally rather than sending the raw key.

ℹ

Install Mechanism

There is no install spec (skill is instruction-driven), which keeps installer risk low, but the skill ships a full scripts/ package (package.json, pnpm-lock) and expects commands run via npx tsx. Running those commands will cause npm to fetch packages (ethers, cuimp, zod, tsx) at runtime if not present. This is expected for a Node-based tool but means dependencies will be retrieved from public registries when executed. No downloads from obscure single-host archives or URL shorteners were observed in the packaged code.

✓

Credentials

Only one required environment variable is declared: ELEMENT_WALLET_PRIVATE_KEY, and it is the primary credential. That is proportionate for a tool that must sign and broadcast blockchain transactions. The SKILL.md and code attempt to limit usage of the key (validate format, sign locally, redact in errors). No unrelated credentials or broad system config paths are requested.

✓

Persistence & Privilege

The skill does not request always:true and does not claim to persist changes to other skills or global agent configuration. It will run local scripts when invoked; autonomous invocation is allowed (platform default) but not combined here with other concerning privileges.

Assessment

This skill appears to do what it says: create/preview/update/publish Element drops and will sign and (after your explicit confirmation) broadcast onchain transactions using the provided ELEMENT_WALLET_PRIVATE_KEY. Before installing/using: 1) Use a dedicated low-risk wallet private key (not your main funds) — the key is necessary and will be used locally to sign and send transactions. 2) Confirm you understand the preview→execute flow and always review the preview output before confirming, especially chain and symbol. 3) The skill will read absolute image file paths you provide; do not point to any files containing secrets. 4) Note minor documentation inconsistencies (SKILL.md mentions jq; packaged scripts use npx/tsx and node/npm). Ensure your environment has Node and npm and be aware that running npx tsx will fetch dependencies from public registries. 5) If you want extra assurance, review the packaged scripts (they perform upload validation and local signing) and run them in an isolated environment or with a test wallet/funds first.

Like a lobster shell, security has layers — review code before you run it.

Runtime requirements

Binsnode, npm

EnvELEMENT_WALLET_PRIVATE_KEY

Primary envELEMENT_WALLET_PRIVATE_KEY

latestvk97bzmkm9ymq96ntjqh98npfd185nvvv

40downloads

0stars

3versions

Updated 21h ago

v1.0.2

MIT-0

Element Drop

Use this skill for Element Drop lifecycle work: create a drop, preview current configuration, update settings or design, publish a configured drop, resume a paused drop, or pause a live drop. This skill is not for marketplace trading, collection analytics, wallet portfolio inspection, or generic Element protocol research. Run the bundled lifecycle commands under scripts/; do not default to ad-hoc API calls.

Runtime Setup

Required environment variable:

ELEMENT_WALLET_PRIVATE_KEY

Example:

export ELEMENT_WALLET_PRIVATE_KEY="your_wallet_private_key_here"

The private key must only be provided through ELEMENT_WALLET_PRIVATE_KEY; do not paste it into chat, JSON payloads, files for this skill, or command arguments. The scripts validate it as a 0x-prefixed 32-byte hex key, use it only for local message and transaction signing, and redact the configured key from known error output. The raw private key is never sent over the network. The scripts may upload media, call Element APIs, and broadcast signed transactions after confirmation, so use a dedicated low-risk wallet.

Only upload user-provided NFT media images. Do not upload secrets, keys, dotfiles, shell configs, environment files, source archives, or arbitrary local documents. The bundled scripts validate uploads as regular local image files and reject symlinks, unsupported extensions, oversized files, and files whose bytes do not match the declared image type.

Routing Contract

First classify the task, then read the matching reference before you answer with field guidance, collect parameters, or run commands:

Create: new Element NFT collection/drop, stopping before publish
List: show current drops and their name / slug
Preview: inspect existing settings, design, prereveal media, or public availability
Update: change settings, prereveal image, design fields, design media, or stages
Publish: publish, resume a paused drop, or pause a live drop
List chains: inspect supported chains or payment tokens
Create: references/create.md
List: references/list.md
Preview: references/preview.md
Update: references/update.md
Publish: references/publish.md

Do not guess supported chains, supported payment tokens, lifecycle defaults, or field constraints from memory. If the user is doing a relevant operation and asks or implies uncertainty about those values, read the matching reference first, then use the read-only command when live data is needed. Do not use this skill for buying, selling, bidding, canceling, floor price, volume, rankings, activity history, inventory, or portfolio queries. If the user asks about field meaning or code behavior in the context of Element Drop lifecycle work, this skill may be used for explanation, but do not run lifecycle commands unless the user is actually performing a lifecycle action.

Confirmation Rules

Read-only commands run immediately:

list-user-drops
preview-drop
list-chains

State-changing commands require preview first:

create-drop
update-drop
publish-drop

For any state-changing command:

Gather the minimum required parameters for the lifecycle stage.
Run preview mode first.
Show a concise execution preview using business language.
Wait for explicit positive confirmation.
Execute only after confirmation.

If execution includes an onchain transaction, also state that continuing will send a real blockchain transaction, identify the user-visible action that sends it, and make clear that preview mode does not broadcast.

Every preview, execution confirmation, and failure report must repeat the selected chain. For create/deploy flows, also repeat the contract symbol. Never silently switch chains after an RPC or network problem; if the requested chain fails, report that chain and ask for a new explicit user instruction before using another chain.

User-Facing Parameters

General:

Use chainName; do not ask users for chain IDs.
Use slug as the main identifier for existing drops.
Resolve backend identifiers internally.
Do not ask for hidden backend IDs when slug is enough.
Local media paths must be absolute.
Local media paths must point to real image files (.png, .jpg, .jpeg, .gif, .webp); never use paths to credentials or system files.
paymentToken accepts token name, symbol, or address.

Settings:

edition: limited or open
maxSupply: required when switching to limited edition
dropBeginTime: mint start time
paymentToken: sale currency
stages: full mint stage array replacement when provided
preReveal: pre-reveal image path

Design:

previewMedia: design preview image path array
name
description / desc
website: must be a complete URL
twitter, instagram, discord, telegram, medium: users may provide suffix or full link; send suffix to backend
bannerFilePath
dropFeaturedImage

Do not expose backend-only identifiers, status flags, or compatibility storage names in user-facing summaries. Use business language such as chain, slug, live/paused/draft, prereveal image, preview images, and availability.

Lifecycle Rules

Create:

Required: chainName, name, symbol, preReveal.
When a create request starts, proactively state these required fields, ask for any that are missing, and then state the defaults that will be applied if the user does not override them.
Optional overrides include settings, stages, design media, design copy, website/social links, and payment token.
Default mint start time is the next day.
Default edition is limited edition with total supply 999.
Default preview image is the same image as preReveal.
Default stage is one public stage with sale price 0, duration 3 days, phase supply equal to the collection supply, max 1 mint per wallet, no interval, and public mode.
Create deploys and configures the drop but does not publish by default.
After create succeeds, tell the user the drop is configured but not live yet, then guide them to preview publishing the same chainName + slug before confirmed publish execution.

Update:

Required: chainName, slug.
Patch semantics: only explicitly provided fields change; omitted fields keep remote values.
If stages is provided, it replaces the full stage array.
Stage IDs are not user-controlled.
Updating settings or prereveal on a live drop requires republish and therefore an onchain confirmation.
Updating a paused drop, design-only fields, design media, or collection profile fields does not force republish.

Publish:

Required: chainName, slug.
Covers first publish, resuming a paused drop, and pausing a live drop.
Default target is live.
If the user asks to keep it paused or pause a live drop, use the paused publish target.
Publish requires an existing configured prereveal image. The publish flow prepares that image for the live drop configuration automatically; if readiness times out, tell the user to re-upload the prereveal image and retry.

Web-Only Features

Element Drop supports these features, but this skill does not currently configure them:

Whitelist stage configuration
Design detail sections

For those, use the web editor and replace your-slug with the actual drop slug:

https://element.market/collections/your-slug/edit/drop

Reporting Contract

For previews, clearly label the response as preview-only and say no changes were applied. For execution, summarize only the user-visible result.

Include the relevant fields for the lifecycle stage:

Create: chain, symbol, slug, contract address, collection URL, drop URL, edit URL, settings summary, design summary, recommended next publish action
List: chain, wallet, drop names, slugs, returned count
Preview: chain, slug, availability state, mint start time, edition, supply, payment token, stages, design/prereveal media status, links
Update: chain, slug, fields changed, whether republish was needed, updated settings/design summaries, links
Publish: chain, slug, transaction hash if sent, final availability state, settings summary, links

Use these business labels in user-facing output:

draft, live, paused for availability
limited edition, open edition for edition
prereveal image for prereveal media
preview images for design preview media
sale currency for payment token

Failure Reporting

Do not say only "failed". State the failed lifecycle stage, the relevant error or response summary, and the actionable recovery. If required parameters are missing, state exactly which user-facing parameters are missing. For upload, API, or onchain failures, identify the segment in business language. Always repeat the selected chain in the failure message. For create/deploy failures, repeat the symbol too.

Absolute Do-Nots

Do not request or echo the private key.
Do not execute state-changing commands before confirmation.
Do not interpret "create" as "create and publish" by default.
Do not overwrite unspecified fields with defaults during update-drop.
Do not show internal script choreography or backend-only identifiers in normal user-facing output.

Comments

Loading comments...