ClawHub

WeryAI Account

v0.1.0

Check WeryAI account credits and API balance through the official WeryAI account endpoint. Use when the user wants to query remaining credits, inspect WeryAI...

0· 116·0 current·0 all-time
by@weryai-developer
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Benign
View report →
OpenClawOpenClaw
Benign
high confidence
Purpose & Capability
Name/description, required binaries (node), and required env var (WERYAI_API_KEY) all align with a small account-balance checker. The primary action in scripts/account.js is a GET to /v1/generation/balance, matching the stated purpose.
Instruction Scope
SKILL.md is narrowly scoped and instructs only to run the balance command. The runtime instructions do not ask for unrelated files or secrets. The only runtime network calls target the configured base URL for the WeryAI API.
Install Mechanism
This is an instruction-only skill (no installer). It includes JS source files but does not download arbitrary code at install time; execution requires only a local Node runtime. No third-party download URLs or archive extraction are present.
Credentials
Only WERYAI_API_KEY is required and correctly declared as primary. The code also supports an optional WERYAI_BASE_URL override (documented in SKILL.md) which is not required but could redirect requests to a non-official host if set by the user—the SKILL.md warns about this. No other secrets or unrelated credentials are requested.
Persistence & Privilege
always is false and the skill does not request elevated or persistent system privileges, nor does it modify other skills or system-wide agent settings.
Assessment
This package appears to do exactly what it says: a read-only balance check using WERYAI_API_KEY and Node >=18. Before running, verify you trust the repository (open scripts/account.js) and keep your API key out of files. Do not set WERYAI_BASE_URL to an untrusted host (the override can redirect the request). If you want extra caution, run the CLI in an isolated or short-lived environment and confirm the JSON output includes a numeric balance as documented.
scripts/account.js:12
Environment variable access combined with network send.
Confirmed safe by external scanners
Static analysis detected API credential-access patterns, but both VirusTotal and OpenClaw confirmed this skill is safe. These patterns are common in legitimate API integration skills.

Like a lobster shell, security has layers — review code before you run it.

latestvk972kxzpawxtwdpymv96dgg62x83b530

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Runtime requirements

💳 Clawdis
Binsnode
EnvWERYAI_API_KEY
Primary envWERYAI_API_KEY

Comments