ClawHub

Vigilath Pet Commerce

v1.0.0

Search, bargain, order, and pay for pet supplies on Vigilath.com — an AI-powered pet commerce platform with multi-round price negotiation.

0· 96·0 current·0 all-time
by@gt-oliver

Install

OpenClaw Prompt Flow

Install with OpenClaw

Best for remote or guided setup. Copy the exact prompt, then paste it into OpenClaw for gt-oliver/vigilath-shopping.

Previewing Install & Setup.
Prompt PreviewInstall & Setup
Install the skill "Vigilath Pet Commerce" (gt-oliver/vigilath-shopping) from ClawHub.
Skill page: https://clawhub.ai/gt-oliver/vigilath-shopping
Keep the work scoped to this skill only.
After install, inspect the skill metadata and help me finish setup.
Required env vars: VIGILATH_TOKEN
Required binaries: curl
Use only the metadata you can verify from ClawHub; do not invent missing requirements.
Ask before making any broader environment changes.

Command Line

CLI Commands

Use the direct CLI path if you want to install manually and keep every step visible.

OpenClaw CLI

Bare skill slug

openclaw skills install vigilath-shopping

ClawHub CLI

Package manager switcher

npx clawhub@latest install vigilath-shopping
Security Scan
VirusTotalVirusTotal
Benign
View report →
OpenClawOpenClaw
Benign
medium confidence
Purpose & Capability
Name/description match the requested artifacts: the skill only requires curl and a VIGILATH_TOKEN and the SKILL.md describes HTTP calls to vigilath.com for search, bargain, order, and pay. These requirements are proportionate to an API-backed shopping agent.
Instruction Scope
Instructions are focused on vigilath.com endpoints and include a Device Flow for obtaining VIGILATH_TOKEN. They also document an autonomous 'quick buy' flow (AI picks, orders, and pays). This is coherent for a shopping agent but includes the ability to place/pay for orders automatically — an important operational risk (financial actions) that should be guarded by user consent/confirmation policies.
Install Mechanism
Instruction-only skill with no install spec and only requires curl to be present. No downloads or archive extraction — low install risk.
Credentials
Only a single credential (VIGILATH_TOKEN) is required and that maps directly to the documented Authorization: Bearer usage. No unrelated secrets, config paths, or excessive env vars are requested.
Persistence & Privilege
always:false and normal autonomous invocation are used. The skill documents storing the token as VIGILATH_TOKEN (expected), but autonomous ordering + payment capability means the skill can spend account funds if the agent is allowed to invoke it without safeguards.
Assessment
This skill appears coherent for interacting with Vigilath.com, but consider the following before installing: - VIGILATH_TOKEN grants in-account API privileges (search, view addresses, create orders, and pay). Only install if you trust the source and the Vigilath service. - The skill supports autonomous purchase/pay flows. Require explicit user confirmation or limits in your agent policy before allowing it to place or pay orders to avoid unintended charges. - Use a token with minimal scope if the platform supports it, rotate/revoke the token if you stop using the skill, and monitor account activity/charges. - Verify the domain (https://www.vigilath.com) is correct and that you obtained the skill from a trusted publisher since no homepage or canonical source is provided.

Like a lobster shell, security has layers — review code before you run it.

Runtime requirements

Binscurl
EnvVIGILATH_TOKEN
Primary envVIGILATH_TOKEN
latestvk97accp5em3ftbm05ywsq6c8b5842edc
96downloads
0stars
1versions
Updated 3w ago
v1.0.0
MIT-0
@gt-oliver
latest
Download

Vigilath.com Pet Commerce

You can search products, negotiate prices, place orders, and pay on Vigilath.com (an AI pet supplies marketplace).

Base URL

All endpoints use: https://www.vigilath.com

Authentication

Every API call (except auth endpoints) requires:

Authorization: Bearer $VIGILATH_TOKEN

Getting a token

If VIGILATH_TOKEN is not set, use Device Flow to obtain one:

  1. Create session:
curl -s -X POST https://www.vigilath.com/api/agent/auth/session \
  -H "Content-Type: application/json" -d '{}'

Response: {"sessionId": "...", "authUrl": "https://www.vigilath.com/api/agent/auth/page?code=XXX-123", "code": "XXX-123", "expiresIn": 600}

  1. Show the authUrl to the user and ask them to open it in a browser to log in.

  2. Poll for token (every 5 seconds, up to 10 minutes):

curl -s -X POST https://www.vigilath.com/api/agent/auth/token \
  -H "Content-Type: application/json" -d '{"sessionId": "SESSION_ID"}'
  • HTTP 428: user hasn't logged in yet, keep polling
  • HTTP 200: {"accessToken": "eyJ...", "expiresIn": 2592000} — save this as VIGILATH_TOKEN
  • HTTP 410: session expired, start over

Token is valid for 30 days.

Capabilities

1. Smart Shopping (search + AI selection)

curl -s -X POST https://www.vigilath.com/api/agent/shopping \
  -H "Authorization: Bearer $VIGILATH_TOKEN" \
  -H "Content-Type: application/json" \
  -d '{"query": "organic dog food for small breeds", "language": "English"}'

Response contains selected_products (array) and natural_message (AI recommendation).

Each product includes: spuId, spuName, priceFee (cents CNY), mainImgUrl, selling_point, categoryName, skuId, shopId, shopName, stock, bargain_enabled.

Products with bargain_enabled: true support price negotiation (see Bargain below).

2. Bargain (multi-round price negotiation)

For products with bargain_enabled: true, you can negotiate a lower price.

Step 1 — Search with bargain mode:

curl -s -X POST https://www.vigilath.com/api/agent/shopping \
  -H "Authorization: Bearer $VIGILATH_TOKEN" \
  -H "Content-Type: application/json" \
  -d '{"query": "dog food", "bargain": true}'

Response includes bargain_sessions with sessionId for each bargain-enabled product.

Step 2 — Send counter-offers:

curl -s -X POST https://www.vigilath.com/api/agent/bargain \
  -H "Authorization: Bearer $VIGILATH_TOKEN" \
  -H "Content-Type: application/json" \
  -d '{"sessionId": "SESSION_ID", "message": "I offer 25 yuan"}'

Response:

{
  "sessionId": "...",
  "productName": "Premium Dog Food",
  "originalPrice": 35.0,
  "currentPrice": 30.0,
  "message": "25 is too low! How about 30?",
  "round": 2,
  "dealReached": false,
  "isActive": true,
  "quote": null
}

Step 3 — Repeat until dealReached: true. The response will include a quote:

{
  "dealReached": true,
  "quote": {
    "quoteId": "q_xyz789",
    "bargainPrice": 30.0,
    "discount": 5.0,
    "expiresAt": "2026-04-02T12:00:00"
  }
}

Step 4 — Place order with quoteId to apply bargain price (see Order below).

Supported messages: counter-offer ("25块", "I'll pay 80"), accept ("deal", "成交"), quit ("算了", "quit"), leverage ("competitor is cheaper", "I'm a loyal customer").

3. Place Order

curl -s -X POST https://www.vigilath.com/api/agent/order \
  -H "Authorization: Bearer $VIGILATH_TOKEN" \
  -H "Content-Type: application/json" \
  -d '{"items": [{"spuId": 12345, "quantity": 1}], "addrId": null, "quoteId": null}'
  • items: array of {spuId, quantity} — skuId/shopId auto-resolved from spuId
  • addrId: shipping address ID, or null to use user's default address
  • quoteId: bargain quote ID from a successful negotiation (optional)

Response: {"data": {"order_number": "...", "total": 2999, "status": "UNPAID"}}

4. Pay

curl -s -X POST https://www.vigilath.com/api/agent/pay \
  -H "Authorization: Bearer $VIGILATH_TOKEN" \
  -H "Content-Type: application/json" \
  -d '{"orderNumber": "ORDER_NUMBER", "method": "points"}'

Methods:

  • points — instant settlement, fully automated
  • stripe — returns paymentUrl, show to user to complete card payment
  • coinbase — returns paymentUrl, show to user to complete crypto payment

After stripe/coinbase, poll order status to confirm payment.

5. Query Orders

List orders:

curl -s https://www.vigilath.com/api/agent/orders \
  -H "Authorization: Bearer $VIGILATH_TOKEN"

Optional query params: status (1=pending_payment, 2=pending_shipment, 3=shipped, 5=completed, 6=cancelled), page, page_size.

Single order detail:

curl -s https://www.vigilath.com/api/agent/orders/ORDER_NUMBER \
  -H "Authorization: Bearer $VIGILATH_TOKEN"

6. Addresses

List addresses:

curl -s https://www.vigilath.com/api/agent/addresses \
  -H "Authorization: Bearer $VIGILATH_TOKEN"

Create address:

curl -s -X POST https://www.vigilath.com/api/agent/addresses \
  -H "Authorization: Bearer $VIGILATH_TOKEN" \
  -H "Content-Type: application/json" \
  -d '{"receiver": "John", "mobile": "1234567890", "province": "CA", "city": "LA", "area": "Downtown", "addr": "123 Main St"}'

Common Workflows

Quick buy (no bargain)

  1. Search: POST /api/agent/shopping with query
  2. Show products to user, let them pick
  3. Order: POST /api/agent/order with selected spuId(s)
  4. Pay: POST /api/agent/pay with orderNumber

Quick buy (autonomous — one call)

  1. POST /api/agent/shopping with autonomous: true — AI picks and orders automatically
  2. Pay: POST /api/agent/pay with orderNumber from response

Bargain then buy

  1. Search: POST /api/agent/shopping with bargain: true
  2. For each bargain session, negotiate: POST /api/agent/bargain with counter-offers
  3. On deal: POST /api/agent/order with quoteId from quote
  4. Pay: POST /api/agent/pay

Error Handling

  • 401: Token expired or invalid — re-authenticate via Device Flow
  • 404: Resource not found (order, session, address)
  • 422: Validation error — check request body
  • 429: Rate limited — wait and retry

Discovery

For machine-readable capability metadata:

  • GET /.well-known/agent.json — structured service discovery
  • GET /llms.txt — LLM-readable summary
  • GET /llms-full.txt — full API documentation

Comments

Loading comments...