Scan Report
0 /100
openclaw-ghost-pay
Discover Ghost payment requirements, execute real x402 calls, report x402 settlements, and run GhostWire quote/prepare/status flows for direct escrow.
Legitimate Ghost Protocol payment integration for OpenClaw agents using standard x402 payment protocol; all capabilities are declared, dependencies are well-known, and no malicious or exfiltration behavior detected.
Safe to install
No action needed. Skill is safe to use for its documented purpose of x402 payment handling and GhostRank settlement reporting.
| Resource | Declared | Inferred | Status | Evidence |
|---|---|---|---|---|
| Network | READ | READ | ✓ Aligned | bin/call-x402.mjs:59 - fetch() calls to merchant URLs; bin/get-payment-requireme… |
| Shell | NONE | NONE | — | No subprocess/shell execution found. Scripts use only Node.js built-ins (fetch, … |
| Environment | READ | READ | ✓ Aligned | Scripts read GHOST_SIGNER_PRIVATE_KEY and related env vars only for signing x402… |
| Filesystem | NONE | NONE | — | No file read/write operations. Uses only {baseDir} path substitution for script … |
| Clipboard | NONE | NONE | — | No clipboard access observed. |
| Skill Invoke | READ | READ | ✓ Aligned | SKILL.md declares skill is invoked for x402 workflows; openclaw.plugin.json regi… |
| Database | NONE | NONE | — | No database access observed. |
| Browser | NONE | NONE | — | No browser access observed. |
2 findings
Medium External URL 外部 URL
https://ghostprotocol.cc INSTALL.md:47 Medium External URL 外部 URL
https://merchant.example.com/ask INSTALL.md:51 File Tree
13 files · 47.8 KB · 1461 lines JavaScript 7f · 954L
Markdown 4f · 479L
JSON 2f · 28L
├─
▾
bin
│ ├─
call-x402.mjs
JavaScript
│ ├─
create-wire-job-from-quote.mjs
JavaScript
│ ├─
get-payment-requirements.mjs
JavaScript
│ ├─
get-wire-job-status.mjs
JavaScript
│ ├─
get-wire-quote.mjs
JavaScript
│ ├─
report-x402-settlement.mjs
JavaScript
│ └─
shared.mjs
JavaScript
├─
INSTALL.md
Markdown
├─
openclaw.plugin.json
JSON
├─
package.json
JSON
├─
QUICKSTART.md
Markdown
├─
README.md
Markdown
└─
SKILL.md
Markdown
Dependencies 3 items
| Package | Version | Source | Known Vulns | Notes |
|---|---|---|---|---|
viem | ^2.21.0 | npm | No | Pinned to minor version range. Well-maintained Ethereum library. |
x402 | ^1.1.0 | npm | No | Pinned to minor version range. Official x402 protocol library. |
x402-fetch | ^1.1.0 | npm | No | Pinned to minor version range. Official x402-fetch wrapper. |
Security Positives
✓ All network calls go to documented endpoints: ghostprotocol.cc (MCP and settlement API) and user-specified merchant URLs for x402 payment flow
✓ Private key signing is performed locally via viem's privateKeyToAccount; private key never leaves the runtime
✓ Dependencies (viem, x402, x402-fetch) are pinned to minor versions and are well-known, reputable packages
✓ No subprocess, shell execution, or command injection vectors found
✓ No credential exfiltration — GHOST_SIGNER_PRIVATE_KEY is used only for signing and never logged or transmitted
✓ No access to sensitive filesystem paths (~/.ssh, ~/.aws, .env files)
✓ No base64 obfuscation, eval usage, or anti-analysis patterns
✓ SKILL.md fully documents all capabilities, environment variables, and script behaviors
✓ Dry-run mode available to validate requests before committing to payment
✓ Proper JSON-RPC error handling and timeout management throughout
✓ clear exit codes (0 for success, 1 for failure) for agent workflow integration