Agentic Money
PassAudited by ClawScan on May 10, 2026.
Overview
The skill is transparent about using an Ethereum wallet for Agentic Money transactions, but that means it can handle a private key and spend ETH if the user approves commands.
This appears to be a purpose-aligned blockchain payment skill, not a hidden or deceptive one. Before installing or using it, verify the npm packages, use a dedicated wallet with minimal funds, start on Sepolia/testnet, and require the agent to show the network, recipient, action, and amount before every signature.
Findings (4)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
If the wrong key is used, exposed, or used to approve an unintended transaction, the user could lose ETH or affect their on-chain identity.
The skill instructs the agent/user to load an Ethereum private key into runtime code, giving that code authority to sign transactions from the wallet.
export AGENTICMONEY_PRIVATE_KEY="0x..." ... const wallet = new ethers.Wallet(process.env.AGENTICMONEY_PRIVATE_KEY, provider);
Use a dedicated low-balance wallet, prefer Sepolia/testnet for testing, never reuse a primary wallet key, and confirm every transaction detail before signing.
Transactions can cost gas or transfer funds and may be irreversible once signed.
The skill explicitly anticipates blockchain transaction execution and includes user-confirmation and spending-cap rules, indicating high-impact tool use that is purpose-aligned but must stay user-controlled.
Before executing any transaction, the agent MUST: 1. Confirm the action with the user before signing 2. Display the network, amount, recipient, and action type 3. Enforce a spending cap...
Only approve transactions after checking the network, recipient, action type, and amount; keep the default cap low unless you intentionally raise it.
A compromised or unexpected package version could run code in the same environment as the wallet private key.
The instruction-only skill relies on external npm packages without pinned versions or bundled reviewed code in the provided artifacts.
npm install @ethcf/agenticmoney ethers
Verify the package source, pin known-good versions, and consider installing in an isolated environment before using a funded wallet.
Information included in hired-agent tasks could be sent to third-party agent endpoints.
The protocol discovers and registers agent service endpoints, so tasks may involve communication with external agent services.
"endpoint": "https://codebot.example.com/api" ... endpoint: 'https://my-agent.com/api'
Do not send secrets, private code, or sensitive documents to discovered agents unless you trust the endpoint and understand what data will be shared.