ClawHub

NodPay

Security checks across malware telemetry and agentic risk

Overview

NodPay is a disclosed crypto shared-wallet skill that stores an agent signing key locally and can propose, but not unilaterally approve, on-chain payments.

Install only if you want an agent to participate in crypto payment proposal workflows. Protect `~/.nodpay/.env` like a wallet credential, verify the `nodpay` npm package/source before use, and personally review every approval link, chain, recipient, amount, and nonce before signing.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Rogue AgentSelf-Modification, Session Persistence
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Findings (5)

Vague Triggers

Medium
Confidence
86% confidence
Finding
The activation text is broad enough to trigger on common requests like 'send crypto' or 'make a payment', which can cause the agent to invoke a high-risk wallet/payment capability in situations where the user did not explicitly intend to use this specific skill. In a financial skill, over-broad routing materially increases the chance of unintended transaction preparation and exposure of wallet-related state.

Credential Access

High
Category
Privilege Escalation
Content
{
    "openclaw":
      {
        "requires": { "bins": ["npx", "curl"], "config": ["~/.nodpay/.env", "~/.nodpay/wallets/"] },
        "homepage": "https://nodpay.ai",
        "install": [{ "id": "node", "kind": "node", "package": "nodpay", "label": "Install NodPay CLI (npm)", "author": "xhyumiracle", "source": "https://github.com/xhyumiracle/nodpay-cli" }]
      },
Confidence
84% confidence
Finding
.env"

Credential Access

High
Category
Privilege Escalation
Content
"homepage": "https://nodpay.ai",
        "install": [{ "id": "node", "kind": "node", "package": "nodpay", "label": "Install NodPay CLI (npm)", "author": "xhyumiracle", "source": "https://github.com/xhyumiracle/nodpay-cli" }]
      },
    "credentials": "Agent signing key stored in ~/.nodpay/.env (chmod 600, generated by npx nodpay keygen). Read at runtime by CLI process; not passed via CLI args, env vars, or stdout.",
    "persistence": ["~/.nodpay/.env (agent key, chmod 600)", "~/.nodpay/wallets/*.json (wallet info, public key material)"],
    "network": ["nodpay.ai (op-store relay + wallet creation UI)", "Public RPC endpoints via --chain"]
  }
Confidence
91% confidence
Finding
.env

Credential Access

High
Category
Privilege Escalation
Content
"install": [{ "id": "node", "kind": "node", "package": "nodpay", "label": "Install NodPay CLI (npm)", "author": "xhyumiracle", "source": "https://github.com/xhyumiracle/nodpay-cli" }]
      },
    "credentials": "Agent signing key stored in ~/.nodpay/.env (chmod 600, generated by npx nodpay keygen). Read at runtime by CLI process; not passed via CLI args, env vars, or stdout.",
    "persistence": ["~/.nodpay/.env (agent key, chmod 600)", "~/.nodpay/wallets/*.json (wallet info, public key material)"],
    "network": ["nodpay.ai (op-store relay + wallet creation UI)", "Public RPC endpoints via --chain"]
  }
---
Confidence
91% confidence
Finding
.env

Session Persistence

Medium
Category
Rogue Agent
Content
---
name: nodpay
description: Propose on-chain payments from a shared wallet. Use when user asks to send crypto, make a payment, or create a shared wallet.
metadata:
  {
    "openclaw":
Confidence
76% confidence
Finding
create a shared wallet. metadata: { "openclaw": { "requires": { "bins": ["npx", "curl"], "config": ["~/.nodpay/.env", "~/.nodpay/wallets/"] }, "homepage": "https://nodpay.a

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal