Clevr Pay

Before installing or enabling this skill, do the following: - Ask the skill owner to explain the contradiction between the SKILL.md's claim of 'locally-configured API endpoints / no hardcoded external URLs' and the fact the docs and helper script contain explicit sandbox and production base URLs (uatapi.cleanverse.com and api.cleanverse.com). Confirm which endpoints your agent will actually call. - Verify the provenance of any embedded RPC or API keys shown in the docs (the example Alchemy URL contains what looks like a key). If those are real, they must be removed; if they are placeholders, confirm they are placeholders. - Confirm what sensitive fields the backend returns (e.g., currentKycHash or other identity/KYC data) and decide whether your agent should display or store them. Limit the agent's ability to return or log PII/KYC data unless you intend that. - Test the workflow in the sandbox environment first (use --env sandbox) and avoid production until you have validated behavior and ownership of the endpoints. - Do not provide private keys or paste seed phrases into the agent. The skill recommends using an EVM wallet skill for wallet creation — ensure that wallet skill has proper safeguards. - If you plan to allow autonomous agent invocation that can call this skill, consider restricting or reviewing those capabilities since this skill deals with financial/KYC data and could widen impact. If the author cannot clearly justify the hardcoded endpoints and the embedded RPC key, treat the package as untrusted and do not use it for production payments.