AsterPay
PassAudited by VirusTotal on May 12, 2026.
Overview
Type: OpenClaw Skill Name: asterpay Version: 1.0.1 The skill is classified as suspicious due to its reliance on executing remote code via `npx` and installing external npm packages (`@anthropic-ai/mcp-remote`, `@asterpay/mcp-server`, `@x402/fetch`) as instructed in `SKILL.md`. While this is a common method for distributing tools, it introduces significant supply chain risks, as the security of the skill depends entirely on the integrity of these third-party packages and the remote API (`https://x402-api-production-ba87.up.railway.app/mcp`) they interact with. The skill also exposes powerful capabilities like financial transactions, code review, and webpage screenshots, which, if compromised or misused, could lead to harmful outcomes, despite the presence of explicit guardrails in `SKILL.md` aimed at preventing such misuse.
Findings (0)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
If the agent or MCP tool is allowed to act too freely, it could spend USDC on paid calls or settlement-related actions unexpectedly.
The skill can use a funded crypto wallet for paid API calls, and the artifact does not define enforceable spending caps, wallet scoping, or a concrete confirmation mechanism beyond advisory guardrails.
Configure a wallet with USDC on Base network 3. The SDK handles payment automatically per API call
Use a dedicated low-balance wallet, require manual approval for every paid or settlement action, and verify any wallet/private-key handling before enabling the MCP server.
Future package or server changes could alter the tools your agent receives without this SKILL.md changing.
The recommended setup uses an unpinned @latest npm package and a hosted remote MCP endpoint. This is expected for an MCP integration, but version and endpoint provenance can change over time.
npx -y @anthropic-ai/mcp-remote@latest https://x402-api-production-ba87.up.railway.app/mcp
Pin package versions where possible, verify the official AsterPay MCP endpoint and npm package, and review the MCP server before connecting a funded wallet.
Sensitive documents, private code, or internal URLs could be shared with the external provider if submitted to these tools.
The listed MCP/API tools may send user-provided text, code, URLs, or HTML to AsterPay’s remote service. That is purpose-aligned, but the artifact does not describe retention or privacy boundaries.
`ai_summarize` | $0.01 | Summarize any text ... `ai_code_review` | $0.05 | Code review with security analysis ... `take_screenshot` | $0.02 | Webpage screenshots
Avoid sending confidential content unless you have reviewed AsterPay’s privacy, retention, and security terms.