NTS BizNo CLI

v0.1.0

Verify Korean business registration numbers (사업자등록번호) via the official NTS (국세청) public API. Operating-status lookup (계속/휴업/폐업), full authenticity check (b_n...

⭐ 0· 42·0 current·0 all-time

byChloe Park@chloepark85

OpenClaw Prompt Flow

Install with OpenClaw

Best for remote or guided setup. Copy the exact prompt, then paste it into OpenClaw for chloepark85/nts-bizno-cli.

Previewing Install & Setup.

Prompt PreviewInstall & Setup

Install the skill "NTS BizNo CLI" (chloepark85/nts-bizno-cli) from ClawHub.
Skill page: https://clawhub.ai/chloepark85/nts-bizno-cli
Keep the work scoped to this skill only.
After install, inspect the skill metadata and help me finish setup.
Use only the metadata you can verify from ClawHub; do not invent missing requirements.
Ask before making any broader environment changes.

Command Line

CLI Commands

Use the direct CLI path if you want to install manually and keep every step visible.

OpenClaw CLI

Bare skill slug

openclaw skills install nts-bizno-cli

ClawHub CLI

Package manager switcher

npx clawhub@latest install nts-bizno-cli

Security Scan

Capability signals

CryptoCan make purchasesRequires sensitive credentials

These labels describe what authority the skill may exercise. They are separate from suspicious or malicious moderation verdicts.

VirusTotal

Benign

View report →

OpenClaw

Suspicious

high confidence

Purpose & Capability

The code and SKILL.md consistently implement NTS business-number status/validation and local checksum formatting (matches the stated purpose). However the registry metadata claims 'Required env vars: none' and 'Required binaries: none' while the runtime scripts clearly require NTS_API_KEY and tools like curl and jq. This metadata omission is an incoherence that could mislead users or automated systems about the skill's true needs.

✓

Instruction Scope

SKILL.md and the scripts limit actions to: local checksum/formatting, batching, and POSTing JSON to the documented odcloud/api endpoints (NTS via api.odcloud.kr). The scripts do not attempt to read other system secrets, home directories, or send data to unexpected endpoints. Error handling is explicit and network calls target the declared NTS_BASE (default api.odcloud.kr).

✓

Install Mechanism

There is no external installer or download — the repository includes bash scripts and docs. No package downloads or extracted archives are present. This reduces supply-chain risk; you still need to inspect and run the included scripts locally.

Credentials

The runtime needs a single API credential (NTS_API_KEY / encoded serviceKey) which is appropriate for calling the NTS service. However the skill registry metadata does not declare this required environment variable or the required binaries (bash, curl, jq). The single credential requested is proportional to purpose, but the missing declaration is misleading and could cause accidental exposure or misconfiguration.

✓

Persistence & Privilege

The skill does not request always:true, does not modify other skills or system-wide settings, and does not persist credentials beyond standard environment variables. It only runs as invoked and makes outbound requests to the NTS endpoint.

What to consider before installing

This skill's code matches its description: it locally validates and formats Korean business numbers and calls the official NTS endpoints via api.odcloud.kr. However the registry metadata is incorrect/missing: the scripts require an NTS_API_KEY (the encoded serviceKey from data.go.kr) and runtime binaries (bash, curl, jq), but the metadata states none. Before installing or running: 1) Inspect the scripts (they are plain bash) and confirm NTS_BASE points to the official api.odcloud.kr. 2) Do not paste your main long-lived credentials in places that other users/processes can see; the script sends the API key as a URL query parameter (serviceKey=...), which can appear in proxy logs or process arguments on some systems — consider using ephemeral/rotated keys and store the key in a secrets manager. 3) Ask the publisher (or upstream source) to correct the registry metadata to declare NTS_API_KEY and required binaries. 4) Run the scripts in a controlled environment (non-root, limited network scope) the first time and verify outputs. 5) If you plan to run bulk checks in CI or servers, ensure quota and rate limits are acceptable and that the encoded key is handled securely. If you cannot verify the origin (source unknown), prefer to review and run the included scripts locally rather than granting any automated agent persistent access.

Like a lobster shell, security has layers — review code before you run it.

apivk97evq48wx4kfpbnqjq8zs1yzn85kbwsbusinessvk97evq48wx4kfpbnqjq8zs1yzn85kbwsclivk97evq48wx4kfpbnqjq8zs1yzn85kbwskoreavk97evq48wx4kfpbnqjq8zs1yzn85kbwskybvk97evq48wx4kfpbnqjq8zs1yzn85kbwslatestvk97evq48wx4kfpbnqjq8zs1yzn85kbwsntsvk97evq48wx4kfpbnqjq8zs1yzn85kbwssajaeojavk97evq48wx4kfpbnqjq8zs1yzn85kbwstaxvk97evq48wx4kfpbnqjq8zs1yzn85kbws

42downloads

0stars

1versions

Updated 2d ago

v0.1.0

MIT-0

nts-bizno-cli

Command-line wrapper for the NTS 사업자등록정보 진위확인 및 상태조회 서비스 (Korean National Tax Service business-registration API), exposed via data.go.kr / api.odcloud.kr.

Two official endpoints + two local conveniences:

Command	Endpoint	API key?	Purpose
`scripts/status.sh`	`POST /v1/status`	yes	Look up operating status (계속사업자/휴업자/폐업자) for up to 100 b_no per call.
`scripts/validate.sh`	`POST /v1/validate`	yes	Authenticity check — does (b_no + 개업일 + 대표자명) match NTS records?
`scripts/format.sh`	local	no	Verify checksum + format `XXX-XX-XXXXX`. No network.
`scripts/bulk.sh`	`POST /v1/status`	yes	Read a file of b_no's, checksum-filter, batch-call status in groups of 100.

All output is JSONL (one record per line) so it pipes straight into jq, csvkit, or downstream skills.

When to use this skill

B2B onboarding / KYB — verify a partner's business number is real and currently active before contract signing or payment release.
Supplier-list cleanup — bulk-check thousands of b_no's, flag the closed (폐업자) and dormant (휴업자).
Form-fill validation — confirm a user's typed b_no is structurally valid before hitting the API (saves quota and cost).
Tax-invoice (세금계산서) issuance gate — Korean law requires verifying the counterparty's tax type (일반/간이/면세) before issuing; this returns it.
Public-procurement (나라장터) prep — validate vendor records before bid submission.

Do not use this skill for

Address lookup → use juso-address-cli.
Corporate-filings / disclosure data → use opendart-cli.
Issuing the actual tax invoice → use unified-invoice.
Looking up a business by name — NTS does not expose name-based search; you need the b_no first.

Prerequisites

Get a serviceKey at https://www.data.go.kr (free, 1 business-day approval):
- Search for "국세청 사업자등록정보 진위확인 및 상태조회 서비스".
- Click 활용신청 (one form per API). Both 상태조회 and 진위확인 are commonly approved on the same day. Free-tier quota is 10,000 requests/day for each.
Export the encoded key:
```
export NTS_API_KEY='Ad9...%2BAbc%3D'    # paste the "일반 인증키 (Encoding)" value
```
Use the Encoding key (URL-encoded) — the wrapper passes it through serviceKey= directly.
Dependencies: bash, curl, jq (default on macOS/Linux).

Commands

1) Status lookup (`scripts/status.sh`)

# Single
scripts/status.sh 124-81-00998

# Multiple (up to 100 per call)
scripts/status.sh 1248100998 220-81-62517 120-81-47521

Sample row:

{"b_no":"1248100998","b_no_formatted":"124-81-00998","b_stt_cd":"01","b_stt":"계속사업자","tax_type_cd":"01","tax_type":"부가가치세 일반과세자","end_dt":"","utcc_yn":"N","tax_type_change_dt":"","invoice_apply_dt":"","rbf_tax_type_cd":"","rbf_tax_type":""}

Status codes:

b_stt_cd=01 → 계속사업자 (active)
b_stt_cd=02 → 휴업자 (dormant)
b_stt_cd=03 → 폐업자 (closed) — end_dt carries 폐업일.
b_stt_cd="" → b_no not registered with NTS at all.

Tax-type codes:

01 부가가치세 일반과세자, 02 부가가치세 간이과세자, 03 부가가치세 면세사업자, 04 비영리법인, 05/06 외국 / 임시.

2) Authenticity check (`scripts/validate.sh`)

Single record — flags:

scripts/validate.sh \
  --b-no 124-81-00998 \
  --start-dt 19690113 \
  --p-nm "한종희"

Batch — JSON file:

cat > /tmp/payload.json <<'EOF'
{"businesses":[
  {"b_no":"1248100998","start_dt":"19690113","p_nm":"한종희","p_nm2":"","b_nm":"","corp_no":"","b_sector":"","b_type":""},
  {"b_no":"2208162517","start_dt":"19990602","p_nm":"최수연","p_nm2":"","b_nm":"","corp_no":"","b_sector":"","b_type":""}
]}
EOF
scripts/validate.sh --file /tmp/payload.json

Sample row:

{"b_no":"1248100998","b_no_formatted":"124-81-00998","valid":true,"valid_code":"01","valid_msg":"확인","status":{...}}

valid: true ⇔ NTS confirms a match. valid: false (valid_code:"02") means at least one of (b_no, 개업일, 대표자명) does not match — valid_msg carries the reason.

3) Local checksum (`scripts/format.sh`)

No network, no key. Cheap pre-filter before hitting the API.

scripts/format.sh 1248100998 abc-def-1234 220-81-62517
# {"input":"1248100998","normalized":"1248100998","formatted":"124-81-00998","valid_checksum":true}
# {"input":"abc-def-1234","normalized":"abcdef1234","formatted":"abcdef1234","valid_checksum":false}
# {"input":"220-81-62517","normalized":"2208162517","formatted":"220-81-62517","valid_checksum":true}

Algorithm (NTS official): weights [1,3,7,1,3,7,1,3,5] over the first 9 digits, plus floor(d8*5/10), mod 10, complement to 10. Saves you a network round trip on typo'd inputs.

4) Bulk processor (`scripts/bulk.sh`)

# File input — one b_no per line, comments with #
cat > /tmp/suppliers.txt <<'EOF'
124-81-00998   # Samsung Electronics
220-81-62517   # NAVER
120-81-47521   # Kakao
123-45-67890   # bogus typo
EOF
scripts/bulk.sh /tmp/suppliers.txt > /tmp/audit.jsonl

# stdin
psql -At -c 'SELECT bno FROM suppliers' | scripts/bulk.sh - > /tmp/audit.jsonl

bulk.sh runs the local checksum first; bad entries get flagged with {"error":"checksum_failed"} and never burn API quota. Good entries are batched in groups of 100 (NTS hard limit).

Common pipelines

# Find all suppliers that closed
scripts/bulk.sh suppliers.txt | jq -c 'select(.b_stt_cd=="03") | {b_no, end_dt}'

# Tax-type breakdown
scripts/bulk.sh suppliers.txt | jq -r '.tax_type' | sort | uniq -c | sort -rn

# Onboarding gate — only proceed if 계속사업자 + 일반과세
scripts/status.sh "$BNO" \
  | jq -e 'select(.b_stt_cd=="01" and .tax_type_cd=="01")' >/dev/null \
  && echo "ok to issue 세금계산서" \
  || { echo "blocked"; exit 1; }

Errors & quirks

code:-4 "등록되지 않은 인증키 입니다." — your NTS_API_KEY is wrong or hasn't been approved yet for this specific endpoint. Check data.go.kr → 마이페이지 → 활용신청 현황.
code:-22 "사용한도..." — you've exceeded your free-tier daily quota. Apply for 활용 한도 증가 in 마이페이지.
The validate endpoint counts each item in businesses[] separately against quota; status counts only one request regardless of b_no[] length. Prefer status for cheap status sweeps.
NTS returns historical end_dt even when b_stt_cd != "03" if the business was once closed and re-opened — read both fields.
start_dt on validate must be YYYYMMDD (no dashes); pre-1900 / future dates are rejected.

Project layout

nts-bizno-cli/
├── SKILL.md          # this file
├── README.md         # short user-facing intro (mirrors SKILL.md)
├── LICENSE           # MIT
├── scripts/
│   ├── _common.sh    # shared helpers (auth, POST, checksum, format)
│   ├── status.sh     # 상태조회
│   ├── validate.sh   # 진위확인
│   ├── format.sh     # local checksum + formatter
│   └── bulk.sh       # file-driven status sweep
└── examples/
    └── supplier-audit.md

Comments

Loading comments...