ClawHub

P0 Systems

v1.0.0

Deploy tokens on Solana, trade on pump.fun & Jupiter, earn creator fees

4· 1.5k·0 current·0 all-time
byp0 Systems@serpepe
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Benign
View report →
OpenClawOpenClaw
Benign
medium confidence
Purpose & Capability
The name/description (deploy tokens on Solana, trade, claim fees) align with the runtime instructions: all actions are HTTP API calls to api.p0.systems and require an API key (P0_API_KEY). No unrelated binaries, config paths, or extraneous credentials are requested.
Instruction Scope
SKILL.md is an instruction-only spec that documents endpoints for creating projects, deploying tokens, trading, claiming fees, and account management. It does include a wallet-based registration example that requires a message signature, but it does not describe how to produce that signature. The instructions do not explicitly tell the agent to read local files or other env vars, nor do they instruct exfiltration of system data. However, because registration and deployments involve signing transactions and wallet addresses, an agent using this skill may prompt the user for signatures — users must not paste private keys or secret phrases into the agent.
Install Mechanism
No install spec and no code files — the skill is instruction-only and will not write binaries or download archives during installation. This is the lowest install risk surface.
Credentials
The skill requires a single environment variable, P0_API_KEY, which is proportional to a third‑party HTTP API integration. There are no unexpected secret/env requests. Caution: the docs show a registration flow that includes an ed25519 signature parameter — that implies the user/agent will need to produce or obtain signatures from a Solana wallet. The skill does not request wallet private keys as env vars, but users or agents might be asked to provide signatures or to sign via a wallet; never paste private keys into the agent.
Persistence & Privilege
always is false and there is no install; the skill does not request elevated or persistent system presence. Autonomous invocation is allowed (platform default) but not combined with other red flags.
Assessment
This skill appears to be what it says: an API client for p0.systems to deploy/trade tokens. Before installing or using it: - Only supply the P0_API_KEY environment variable if you trust https://agents.p0.systems / https://p0.systems and understand the service. - Never paste your wallet private key, seed phrase, or raw signing key into the agent. If the agent asks you to sign a message, use your wallet (hardware or software) to produce the signature locally and copy only the resulting signature string. - Be aware this operates on real tokens and SOL — there are financial and legal risks (pump-and-dump schemes, potential loss). Review the service terms, fees, and reputation of p0.systems before funding campaigns. - If you create an API key for an agent, consider creating a limited/revocable key and revoke it when no longer needed. If you want, I can: check the referenced homepage for TLS/hosting consistency, suggest safe prompts for wallet signing that avoid exposing private keys, or draft a checklist for securely using this skill.

Like a lobster shell, security has layers — review code before you run it.

latestvk97e1mcyq1am4y1ms4jsp0pah180csfg

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Runtime requirements

🚀 Clawdis
EnvP0_API_KEY

Comments