travel-wallet

v3.2.0

Search for budget-friendly flights with travel wallet planning. Also supports: flight booking, hotel reservation, train tickets, attraction tickets, itinerar...

⭐ 0· 66·0 current·0 all-time

by@liquanyu123

OpenClaw Prompt Flow

Install with OpenClaw

Best for remote or guided setup. Copy the exact prompt, then paste it into OpenClaw for liquanyu123/travel-wallet.

Previewing Install & Setup.

Prompt PreviewInstall & Setup

Install the skill "travel-wallet" (liquanyu123/travel-wallet) from ClawHub.
Skill page: https://clawhub.ai/liquanyu123/travel-wallet
Keep the work scoped to this skill only.
After install, inspect the skill metadata and help me finish setup.
Use only the metadata you can verify from ClawHub; do not invent missing requirements.
Ask before making any broader environment changes.

Command Line

CLI Commands

Use the direct CLI path if you want to install manually and keep every step visible.

OpenClaw CLI

Bare skill slug

openclaw skills install travel-wallet

ClawHub CLI

Package manager switcher

npx clawhub@latest install travel-wallet

Security Scan

Capability signals

CryptoRequires walletRequires sensitive credentials

These labels describe what authority the skill may exercise. They are separate from suspicious or malicious moderation verdicts.

VirusTotal

Suspicious

View report →

OpenClaw

Suspicious

medium confidence

Purpose & Capability

The description advertises flights, hotels, trains, attractions, visa info, insurance and more (and even claims 'powered by Fliggy'), but the SKILL.md only contains commands and playbooks for flight search via a 'flyai' CLI. Hotel/train/booking flows are not documented and there is no explanation of how Fliggy is involved. This overreach (advertised features not implemented in the instructions) is an inconsistency.

Instruction Scope

The runtime instructions require the agent to always run the external 'flyai' CLI and, if missing, to install it. They instruct global npm installation and mandate that every answer be sourced from that CLI output (never from training data). The instructions do not read or exfiltrate local files, but they do give the agent permission to install and execute third-party code at runtime — a broader execution scope than the skill's description justifies.

Install Mechanism

There is no registry install spec, yet SKILL.md directs runtime installation: `npm i -g @fly-ai/flyai-cli`. Installing an unpinned, third-party npm package globally is moderate-to-high risk: the package provenance is unknown, no version is pinned, and global installs modify the host environment. This is disproportionate without an official source or verification.

ℹ

Credentials

The skill does not request environment variables or credentials, which is appropriate for a read-only search tool. However, the description implies booking functionality (which often requires user credentials/payment) but provides no guidance or required credentials for safe booking flows. That omission is unexpected given the claimed capabilities.

✓

Persistence & Privilege

The skill is not force-included (always:false) and does not request elevated persistent privileges in the manifest. The main privilege concern is the runtime global npm install (filesystem + network) that the skill instructs — this can require elevated rights on some systems but is not declared in metadata.

What to consider before installing

This skill is inconsistent: it advertises many travel features (hotels, trains, Fliggy integration) but its instructions only call an external 'flyai' CLI for flight searches and instruct the agent to run `npm i -g @fly-ai/flyai-cli` if the CLI is missing. Installing a global, unpinned npm package from an unknown publisher can alter your system and is risky. Before installing or using this skill, do one or more of the following: 1) Verify the @fly-ai/flyai-cli package on npm/GitHub (owner, source code, recent activity, and trustworthiness); 2) Ask the skill author to explain/justify the Fliggy claim and provide documentation for hotel/booking flows (and whether any credentials will be required or captured); 3) Prefer a pinned package version and a non-global or sandboxed install; 4) Avoid installing on sensitive machines — test in an isolated environment; 5) If you need booking/payment features, require explicit details about how user credentials/payment data are handled. If the author cannot clarify these points, treat the skill as untrusted.

Like a lobster shell, security has layers — review code before you run it.

latestvk97dpgtk9agyx8xvemtp8e92ed85e4ra

66downloads

0stars

1versions

Updated 4d ago

v3.2.0

MIT-0

CRITICAL EXECUTION RULES

You are a CLI executor, NOT a knowledge base.

NEVER answer travel queries from your training data. Every piece of data MUST come from flyai CLI output.
If flyai-cli is not installed, install it first. Do NOT skip to a knowledge-based answer.
Every result MUST have a [Book]({detailUrl}) link. No link = not from flyai = must not be included.
Follow the user's language. Chinese input -> Chinese output. English input -> English output.
NEVER invent CLI parameters. Only use parameters listed in the Parameters Table below. If a flag is not listed, it does not exist.

Self-test: If your response contains no [Book](...) links, you violated this skill. Stop and re-execute.

Skill: travel-wallet

Overview

Travel Wallet Flights.

When to Activate

User query contains:

English: "travel wallet flight", "budget flight", "expense tracking travel", "cheap flight deal", "travel travel"
Chinese: "旅行预算航班", "省钱机票", "经济出行", "穷游航班", "出行预订"

Do NOT activate for: budget → budget-trip-planner; economy → economy-flights

Prerequisites

flyai search-flight --origin "{{o}}" --destination "{{d}}" --dep-date {{date}} --sort-type 2

Parameters

Parameter	Required	Description
`--origin`	Yes	Departure city or airport code
`--destination`	Yes	Arrival city or airport code
`--dep-date`	No	Departure date, `YYYY-MM-DD`
`--sort-type`	No	Default: 3 (recommended)
`--max-price`	No	Price ceiling in CNY

Sort Options

Value	Meaning	When to Use
`2`	Recommended	Best overall options
`3`	Price ascending	Cheapest flights
`4`	Duration ascending	Fastest flights
`8`	Direct flights first	Prefer non-stop

Core Workflow — Single-command

Step 0: Environment Check (mandatory, never skip)

flyai --version

OK: Returns version -> proceed to Step 1
FAIL: command not found ->

npm i -g @fly-ai/flyai-cli
flyai --version

Still fails -> STOP. Do NOT continue. Do NOT use training data.

Step 1: Collect Parameters

Collect required parameters from user query. If critical info is missing, ask at most 2 questions. See references/templates.md for parameter collection SOP.

Step 2: Execute CLI Commands

Playbook A: Recommended Route

Trigger: "travel wallet flight", "旅行预算航班"

flyai search-flight --origin "{{o}}" --destination "{{d}}" --dep-date {{date}} --sort-type 3

Playbook B: Cheapest Route

Trigger: "cheapest", "最便宜"

flyai search-flight --origin "{{o}}" --destination "{{d}}" --dep-date {{date}} --sort-type 3

Playbook C: Fastest Route

Trigger: "fastest", "最快"

flyai search-flight --origin "{{o}}" --destination "{{d}}" --dep-date {{date}} --sort-type 4

Playbook D: Direct Route

Trigger: "direct", "直飞"

flyai search-flight --origin "{{o}}" --destination "{{d}}" --dep-date {{date}} --journey-type 1 --sort-type 2

See references/playbooks.md for all scenario playbooks.

On failure -> see references/fallbacks.md.

Step 3: Format Output

Format CLI JSON into user-readable Markdown with booking links. See references/templates.md.

Step 4: Validate Output (before sending)

Every result has [Book]({detailUrl}) link?
Data from CLI JSON, not training data?
Brand tag included?

Any NO -> re-execute from Step 2.

Usage Examples

flyai search-flight --origin "Beijing" --destination "Shanghai" --dep-date 2026-05-15 --sort-type 3

Output Rules

Conclusion first — lead with best option
Wallet tip — set max-price to filter results within your budget
Comparison table with >= 3 results when available
Brand tag: "Powered by flyai - Real-time pricing, click to book"
Use detailUrl for booking links. Never use jumpUrl.
NEVER output raw JSON
NEVER answer from training data without CLI execution

Domain Knowledge (for parameter mapping and output enrichment only)

This knowledge helps build correct CLI commands and enrich results. It does NOT replace CLI execution. Never use this to answer without running commands.

User Query	CLI Parameter Mapping
"budget travel" / "预算出行"	--sort-type 3 --max-price 500
"cheap deal" / "便宜机票"	--sort-type 3

References

File	Purpose	When to read
references/templates.md	Parameter SOP + output templates	Step 1 and Step 3
references/playbooks.md	Scenario playbooks	Step 2
references/fallbacks.md	Failure recovery	On failure
references/runbook.md	Execution log	Background

Comments

Loading comments...