Use this skill when...
Use this skill when the user wants to bind, unlock, or recover a wallet for an AI agent.
Use this skill when the user wants to sign messages, sign transactions, or transfer assets through a policy-controlled wallet flow.
Use this skill when the user wants to interact with supported DeFi flows such as swap.
Use this skill when the user wants to inspect wallet balances, token holdings, addresses, wallet status, or transaction history.
Use this skill when the user wants to manage wallet security policies such as chain allowlists, token allowlists, transfer limits, or confirmation thresholds.
You can always know how-to-use by Swagger-UI at
claw wallet skill
This skill equips an OpenClaw agent with a local multi-chain wallet sandbox.
- All wallet-related operations must go through the local sandbox. Use the localhost API or sandbox CLI instead. Open or use --help command. If sandbox is not running, start/restart it first.
- Before executing any transaction, the agent must ask the user for confirmation (e.g. "Confirm to execute this transaction?"). Do not proceed without explicit user consent.
Bootstrap
Installation path
All files live in one directory:
{your_workspace}/skills/claw-wallet/
| Platform | Resolved path |
|---|
| Linux/macOS | (relative to workspace root) |
| Windows | (relative to workspace root) |
Install
Before cloning or running the installer, first check from the
workspace root whether
already exists (same path as in
Installation path below). Use that check to decide whether this is a reuse flow or a new clone flow.
-
If it exists: Do
not run the git clone or
/
bootstrap unless the user explicitly wants a reinstall.
- Start the sandbox first.
- Linux/macOS:
skills/claw-wallet/claw-wallet.sh start
- Windows:
skills/claw-wallet/claw-wallet.ps1 start
- Use if the sandbox is unhealthy.
- Call
POST {CLAY_SANDBOX_URL}/api/v1/wallet/init
Authorization: Bearer <token>
- This call is idempotent, so it is safe to run even when the wallet already exists.
- Call
GET {CLAY_SANDBOX_URL}/api/v1/wallet/status
- If is or is not , report bind_url
https://www.clawwallet.cc/claim/<uid>
- Stop here after the report. Do not bootstrap again unless the user explicitly asks for reinstall.
-
If it does not exist: Continue with Bootstrap (new clone) below.
Bootstrap (new clone)
Clone this repo into
under your workspace and run the installer. The installer automatically initializes the wallet.
After the installer finishes, immediately run the status disclosure flow and emit the fixed disclosure format below.
Linux/macOS:
bash
mkdir -p skills
git clone https://github.com/ClawWallet/Claw-Wallet-Skill.git skills/claw-wallet
bash skills/claw-wallet/install.sh
Windows PowerShell:
powershell
New-Item -ItemType Directory -Path "skills" -Force | Out-Null
git clone https://github.com/ClawWallet/Claw-Wallet-Skill.git "skills/claw-wallet"
& "skills/claw-wallet/install.ps1"
After install, use
GET {CLAY_SANDBOX_URL}/api/v1/wallet/status
with
Authorization: Bearer <token>
— confirm wallet is ready. The response includes
address information and
uid (when present).
You must show the user: wallet addresses (from the response),
uid (from the response when present) ( HTTP API under
, Swagger at
, same origin). read it only from
/
for
(see
HTTP authentication (sandbox) below).
Use this exact format to respond to the user after finishing the install:
-
-
Addresses: <address map from wallet/status>
-
UID: <uid from wallet/status/identity.json>
-
AGENT_TOKEN: <agent_token from .env.clay or identity>
-
Tell the user: To fully control your wallet with a better experience, open
https://www.clawwallet.cc/claim/<uid>
(substitute
with the value from
or
) to register and bind your sandbox wallet within 15 minutes. Ask them to reply
complete bind when they have finished the bind workflow; then you can explain what the wallet can do.
-
After the user says they completed the bind workflow, tell them: You can use this wallet to transfer, receive, and perform complex DeFi interactions.
Startup rule:
- do not run directly as a long-lived foreground daemon from OpenClaw
- use
skills/claw-wallet/claw-wallet.sh start
skills/claw-wallet/claw-wallet.ps1 start
- use if the process exists but is unhealthy
- use only when you intentionally want a foreground process
- If the user wants balances or transaction history, call
POST {CLAY_SANDBOX_URL}/api/v1/wallet/refresh
Register and bind (website vs agent)
End users (browser): Open
https://www.clawwallet.cc/claim/<uid>
in the browser, substituting
with the wallet
uid from
, to start the bind flow; the
path
must include that uid (see
Claw Wallet).
Agents (automating bind after the user starts the flow): The user will obtain a
from the Claw bind / challenge step and paste or send it to you. You must call the
sandbox bind API with the same bearer token used for all authenticated sandbox requests.
- Token: Use / from
skills/claw-wallet/.env.clay
Authorization: Bearer <token>
- Request:
- Method:
- URL:
{CLAY_SANDBOX_URL}/api/v1/wallet/bind
- Headers:
Content-Type: application/json
- Body (JSON):
{ "message_hash_hex": "<value from user>" }
- Behavior: The sandbox signs locally and forwards the result to the relay
Example (bash / Linux / macOS): is usually available.
bash
curl -sS -X POST "${CLAY_SANDBOX_URL}/api/v1/wallet/bind" \
-H "Content-Type: application/json" \
-H "Authorization: Bearer ${AGENT_TOKEN}" \
-d "{\"message_hash_hex\":\"<hex from user>\"}"
Windows: A plain
CMD window may not have
on older systems, or agents may run only
PowerShell. Prefer one of:
- PowerShell 7+ / Windows Terminal often ships with (real curl). If works, the bash example above is fine (use / or substitute literals).
- If is missing or fails, use (built in):
powershell
$body = @{ message_hash_hex = "<hex from user>" } | ConvertTo-Json
Invoke-RestMethod -Method Post -Uri "$env:CLAY_SANDBOX_URL/api/v1/wallet/bind" `
-ContentType "application/json" `
-Headers @{ Authorization = "Bearer $env:AGENT_TOKEN" } `
-Body $body
Health check
After install or relaunch, verify:
GET {CLAY_SANDBOX_URL}/health
- expected response:
HTTP authentication (sandbox)
- Most routes under (wallet status, sign, transfer, etc.) require:
Authorization: Bearer <token>
- where is exactly the same value as / .
- Typical failure without the header: HTTP 401 with body
Unauthorized: invalid claw wallet sandbox token
Where to read the token (same secret, duplicated for convenience)
| Location | Field(s) |
|---|
skills/claw-wallet/.env.clay
| — base URL (scheme, host, port) for the sandbox HTTP server (API , ). Also or (same value; installer/bootstrap writes both). |
skills/claw-wallet/identity.json
| |
Example workspace test layout (same idea):
wallet_test/<sim>/.env.clay
wallet_test/<sim>/identity.json
Swagger UI ()
We have a list of sandbox API at
,
Unauthenticated or special paths (examples)
- — no bearer required
- , — no bearer (documentation only)
- Exact list is defined by the sandbox binary; see on a running sandbox
Primary wallet API
When
is set, authenticated requests require:
Authorization: Bearer <CLAY_AGENT_TOKEN>
Use the token value from
or
as described in
HTTP authentication (sandbox) above.
You can Open
to see the list of our API and how to use.
Upgrade and Uninstall
Upgrade
- If installed via git clone: → → , then rerun the installer. Local changes are preserved.
- If installed via npx skills add (no ): Backs up // to a temp dir, then → →
git reset --hard origin/main
Wallet data (
,
,
) is preserved in both cases.
Linux/macOS:
bash
skills/claw-wallet/claw-wallet.sh upgrade
Windows PowerShell:
powershell
& "skills/claw-wallet/claw-wallet.ps1" upgrade
Uninstall
If you are an agent:
- You must ask the user for permission before executing the uninstall command. Do not run it automatically.
- You must inform the user: "Before uninstalling, you must backup , , and if you need to recover the wallet later. Deletion is irreversible."
- Proceed only after the user has explicitly confirmed.
If you are a user: Before uninstalling, you must backup
,
, and
if you need to recover the wallet later. Deletion is irreversible.
The uninstall script will:
- Stop the sandbox process
- Display a warning and ask for confirmation
- Proceed only if you type
- Remove the entire skill directory
Linux/macOS:
bash
bash skills/claw-wallet/claw-wallet.sh uninstall
Windows PowerShell:
powershell
& "skills/claw-wallet/claw-wallet.ps1" uninstall
CLI and Manage
Use the wrapper scripts to either manage the sandbox process or call the binary CLI.
Public wrapper entrypoints:
- Linux/macOS:
skills/claw-wallet/claw-wallet.sh
- Windows CMD:
skills\claw-wallet\claw-wallet.cmd
- Windows PowerShell:
& "skills/claw-wallet/claw-wallet.ps1"
Process management:
- starts the sandbox in the background when it is installed but not running
- stops the sandbox
- stops and then starts again
- exits when the sandbox is running, otherwise
- pulls the latest code (git or npx skills update) and reruns the installer
- stops the sandbox, asks for confirmation, and removes the skill directory
CLI commands:
- , , print the built-in CLI usage text
- prints a one-line status summary
- prints the wallet address map
- prints transaction history through
GET /api/v1/wallet/history
- prints cached multichain balances through
GET /api/v1/wallet/assets
- prints a fresh balance snapshot by combining refresh + assets in one request
- prints the oracle price cache
- prints the security and risk cache
- prints recent audit log entries
- triggers an async asset refresh through
POST /api/v1/wallet/refresh
- broadcasts a signed transaction payload
- builds, signs, and submits a transfer payload
- prints the local via (read-only). The merged policy view also appears on
GET /api/v1/wallet/status
- Policy cannot be changed from the sandbox CLI or a generic sandbox POST API. After the wallet is bound, users adjust limits and rules in the frontend; the relay may also push policy updates to the sandbox (file on disk).
Windows equivalents use the same subcommands through
, for example:
& "skills/claw-wallet/claw-wallet.ps1" help
& "skills/claw-wallet/claw-wallet.ps1" status --short
Get-Content policy.json | & "skills/claw-wallet/claw-wallet.ps1" policy set -
Help and usage:
- , , and are equivalent for the sandbox binary
- These flags print the built-in CLI usage text from the binary itself, not a wrapper-specific summary
- The help output is grouped by area: server, wallet read commands, policy, transaction helpers, and local bootstrap / utility commands
- Wallet read commands are thin wrappers over the local HTTP API and still require the bearer token from /
- Running the binary with no subcommand starts the HTTP server, so use explicitly when you want usage text instead of a foreground daemon
Refresh policy
Use refresh only when it protects correctness:
- Must refresh before , , , or any action that depends on fresh balances, history, price, or risk.
- The sandbox already refreshes automatically in the corresponding managed execution paths when it needs to.
- For manual refresh, use the sandbox CLI command or the
POST /api/v1/wallet/refresh
- If you need a fresh snapshot immediately after refresh, prefer instead of alone.
- For OpenClaw / agent automation, call the sandbox refresh API explicitly before transaction execution when the cached state may be stale.
- Do not refresh on every read. Assets/history views should stay cache-first unless the cache is stale or the user explicitly requests a refresh.