Skill flagged — suspicious patterns detected
ClawHub Security flagged this skill as suspicious. Review the scan results before using.
MPP - Machine Payments Protocol
v0.5.7Build with MPP (Machine Payments Protocol) - the open protocol for machine-to-machine payments over HTTP 402. Use when developing paid APIs, payment-gated co...
⭐ 0· 56·0 current·0 all-time
byMisha Kolesnik@tenequm
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
Capability signals
These labels describe what authority the skill may exercise. They are separate from suspicious or malicious moderation verdicts.
OpenClaw
Suspicious
medium confidencePurpose & Capability
The name, description, and extensive reference docs consistently describe an MPP (Machine Payments Protocol) SDK for server and client payment flows (Tempo, Stripe, Lightning, sessions, charge/session intents). The code examples and transports align with that purpose (HTTP 402 handling, SDKs for TypeScript/Python/Rust).
Instruction Scope
SKILL.md and the reference files include actionable runtime guidance that expects the agent/developer to supply and use high-privilege secrets (BIP-39 mnemonics, private keys, MPP_SECRET_KEY, server_secret, etc.), to write/read .env, and to manage on-chain deposits/refunds and persistent transports (WebSockets). The instructions do not overreach into unrelated system areas, but they do direct handling of cryptographic secrets and long-lived network resources without specifying safe storage or limits.
Install Mechanism
This is an instruction-only skill with no install spec and no code files executed by the platform; nothing is downloaded or written by an installer. That minimizes install-time risk.
Credentials
Although the skill metadata declares no required environment variables or credentials, the documentation repeatedly references environment secrets (MNEMONIC, private keys, MPP_SECRET_KEY, server_secret, etc.) and examples show using process.env and Account.from_key. The absence of declared required env vars is a mismatch that could cause the platform to underwarn users about the need to provide sensitive secrets; the skill legitimately needs secrets for its purpose, but they should be explicitly declared and justified.
Persistence & Privilege
Flags show always:false and the skill is user-invocable; it does not request permanent or elevated platform privileges. It does describe persistent network resources (WebSockets, stores) that the implementer must manage, but that is within its stated payment/session purpose.
What to consider before installing
This skill appears to be a genuine MPP protocol SDK (server and client) and will require you to provide and manage sensitive secrets (mnemonics, private keys, server secret keys) and to handle on-chain deposits/refunds and long‑running transports. Before installing or using it:
- Treat any examples that use MNEMONIC, private keys, or MPP_SECRET_KEY as instructions that will cause real funds to be spent if used against mainnet. Prefer testnet/regtest for evaluation.
- The skill metadata does not declare required env vars; make sure you do not accidentally paste real private keys into a public environment. Use dedicated, minimal-permission wallets or ephemeral keys for testing.
- Audit any third‑party packages it references (e.g., @buildonspark/lightning-mpp-sdk, mppx, stellar packages) before use.
- Review where and how your app will persist secrets (.env, stores like Cloudflare KV/Redis) and ensure appropriate access controls and rotation policies.
- Because session modes involve deposits and refunds, understand the escrow and close/recovery flows to avoid locked funds.
If you want higher assurance: request the actual SDK package sources (npm/crates/pypi links & checksums), confirm which environment variables the integrator expects, and run the flows on a testnet/regtest environment first.Like a lobster shell, security has layers — review code before you run it.
latestvk974076pchs48qjem19cv74dg184fqyf
License
MIT-0
Free to use, modify, and redistribute. No attribution required.