WalletPilot
v0.1.0Universal browser wallet automation for AI agents. Supports 10 wallets including MetaMask, Rabby, Phantom, Trust Wallet, OKX, Coinbase, and more. EVM + Solana. Configurable guardrails with spend limits, chain allowlists, and approval thresholds.
⭐ 1· 1.6k·0 current·0 all-time
byFrancesco@andreolf
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
OpenClaw
Suspicious
medium confidencePurpose & Capability
The SKILL.md describes a full TypeScript/Playwright codebase and a plugin architecture (src/, adapters, example files) but the published skill contains only the SKILL.md and no code, package.json, or binaries. It also tells the user to run npm install and npm run setup even though no install spec or code files are provided. That mismatch makes it impossible to verify the implementation and is inconsistent with the claimed capabilities.
Instruction Scope
The runtime instructions direct automated wallet actions (connect, swap, send, sign) and to create and persist a browser profile that contains a new seed-backed wallet. These actions are inherently high-risk. The instructions are also vague about exactly what the 'setup' script does, where secrets (seed phrase, private keys) will be stored, and what human confirmations are required — giving broad discretion that could lead to irreversible fund loss if misused.
Install Mechanism
No formal install spec is included (instruction-only). SKILL.md tells the user to run npm install and npx playwright install chromium, which would pull packages from npm based on a package.json that is not present in the package. That pattern shifts trust to an external, unverified codebase the user must obtain; it is not itself an automated install step in the skill bundle but it creates a practical install risk if the user follows the instructions without first inspecting code.
Credentials
The skill requests no environment variables or external credentials in metadata, which is proportionate. However, the functionality requires filesystem access to browser profiles and will involve private keys/seed phrases stored locally by the browser extension — the SKILL.md does not specify safe handling or encryption of those secrets. No declared env vars is not evidence of safety here because secrets live in the browser profile.
Persistence & Privilege
The skill does not request always:true and does not declare elevated platform privileges. Autonomous model invocation is allowed by default (disable-model-invocation: false), which is normal for skills; combined with the ability to sign/send transactions this increases impact but is not itself an incoherence.
What to consider before installing
Treat this skill as high-risk and incomplete. Do not run any npm or setup scripts from unknown sources or import an unreviewed repo into a machine with real funds. Before using: (1) request the full source repository and package.json so you or a reviewer can audit the code and npm dependencies; (2) verify how and where the wallet seed/private keys are stored and insist on human confirmation for any transaction above a tiny test amount; (3) only test on an air-gapped or throwaway VM with a freshly funded agent wallet holding minimal funds; (4) require a review of the 'setup' script and any automation that can call sign/send to ensure it enforces the stated spend limits and allowlist checks; (5) prefer well-known, open-source alternatives or official integrations with provenance. If you cannot obtain auditable source code and a clear explanation of secret handling, do not install or use this skill with real assets.Like a lobster shell, security has layers — review code before you run it.
automationvk970sb5ays9cnfdypfvxjw9w9n80fatrbackpackvk970sb5ays9cnfdypfvxjw9w9n80fatrblockchainvk970sb5ays9cnfdypfvxjw9w9n80fatrbrowservk970sb5ays9cnfdypfvxjw9w9n80fatrcoinbasevk970sb5ays9cnfdypfvxjw9w9n80fatrcryptovk970sb5ays9cnfdypfvxjw9w9n80fatrdefivk970sb5ays9cnfdypfvxjw9w9n80fatrethereumvk970sb5ays9cnfdypfvxjw9w9n80fatrexodusvk970sb5ays9cnfdypfvxjw9w9n80fatrlatestvk970sb5ays9cnfdypfvxjw9w9n80fatrmetamaskvk970sb5ays9cnfdypfvxjw9w9n80fatrokxvk970sb5ays9cnfdypfvxjw9w9n80fatrphantomvk970sb5ays9cnfdypfvxjw9w9n80fatrrabbyvk970sb5ays9cnfdypfvxjw9w9n80fatrrainbowvk970sb5ays9cnfdypfvxjw9w9n80fatrsolanavk970sb5ays9cnfdypfvxjw9w9n80fatrtrust-walletvk970sb5ays9cnfdypfvxjw9w9n80fatrwalletvk970sb5ays9cnfdypfvxjw9w9n80fatrweb3vk970sb5ays9cnfdypfvxjw9w9n80fatrzerionvk970sb5ays9cnfdypfvxjw9w9n80fatr
License
MIT-0
Free to use, modify, and redistribute. No attribution required.