Skills bankofbots
install
source · Clone the upstream repo
git clone https://github.com/openclaw/skills
Claude Code · Install into ~/.claude/skills/
T=$(mktemp -d) && git clone --depth=1 https://github.com/openclaw/skills "$T" && mkdir -p ~/.claude/skills && cp -r "$T/skills/bankofbotsandy/bankofbots" ~/.claude/skills/openclaw-skills-bankofbots && rm -rf "$T"
OpenClaw · Install into ~/.openclaw/skills/
T=$(mktemp -d) && git clone --depth=1 https://github.com/openclaw/skills "$T" && mkdir -p ~/.openclaw/skills && cp -r "$T/skills/bankofbotsandy/bankofbots" ~/.openclaw/skills/openclaw-skills-bankofbots && rm -rf "$T"
manifest:
skills/bankofbotsandy/bankofbots/SKILL.mdsource content
Core concepts
BOB (beta) is a non-custodial payment proof and trust layer. Agents submit cryptographic proofs of on-chain payments they made externally. Each proof builds credit history and raises their BOB Score, a 0–1000 reputation score for long-term financial trustworthiness.
- Agent: An AI agent with its own identity and BOB Score
- Payment Proof: Cryptographic evidence of an on-chain transaction (BTC, ETH, Base, or SOL txid/hash)
- BOB Score: 0–1000 reputation score derived from proof history, wallet binding, and social signals
- Credit Event: A scored action that changed the agent's BOB Score
- Wallet Binding: Proof of ownership over an external EVM wallet
Quick start
bob init --code <claim-code> bob auth me
Commands
Check your identity
bob auth me
Agent management
bob agent create --name <name> bob agent get <agent-id> bob agent list bob agent approve <agent-id>
Import historical on-chain proofs
For outbound proofs, pass
--sender-address--recipient-address# BTC on-chain (outbound) bob agent credit-import <agent-id> \ --proof-type btc_onchain_tx \ --proof-ref <txid> \ --rail onchain \ --currency BTC \ --amount <sats> \ --direction outbound # ETH on-chain (outbound — sender-address required) bob agent credit-import <agent-id> \ --proof-type eth_onchain_tx \ --proof-ref <0x...txhash> \ --rail onchain \ --currency ETH \ --amount <wei> \ --direction outbound \ --sender-address <your-bound-wallet> # Base on-chain (outbound — sender-address required) bob agent credit-import <agent-id> \ --proof-type base_onchain_tx \ --proof-ref <0x...txhash> \ --rail onchain \ --currency ETH \ --amount <wei> \ --direction outbound \ --sender-address <your-bound-wallet> # Solana on-chain (outbound) bob agent credit-import <agent-id> \ --proof-type sol_onchain_tx \ --proof-ref <txsig> \ --rail onchain \ --currency SOL \ --amount <lamports> \ --direction outbound # ETH on-chain (inbound — you received the payment) bob agent credit-import <agent-id> \ --proof-type eth_onchain_tx \ --proof-ref <0x...txhash> \ --rail onchain \ --currency ETH \ --amount <wei> \ --direction inbound \ --recipient-address <your-bound-wallet> bob agent credit-imports <agent-id> [--limit 50] [--offset 0]
Dual-sided proof submission
Both the sender and recipient of a transaction can independently submit a proof for the same on-chain tx. Each side earns credit:
- Outbound (
, default): You sent the payment. Pass--direction outbound
for EVM proofs so the on-chain sender can be verified against your bound wallet.--sender-address - Inbound (
): You received the payment. Pass--direction inbound
for EVM proofs.--recipient-address
When both counterparties submit the same transaction, confidence is automatically upgraded from
mediumstrongImport x402 payment receipts
bob agent x402-import <agent-id> \ --tx <tx-hash> \ --network eip155:8453 \ --payer <wallet-address> \ --payee <service-address> \ --amount <atomic-units> \ --resource-url <service-url>
Agent credit and BOB Score
bob score me bob agent credit-events <agent-id> [--limit 50] [--offset 0] bob score me bob score composition bob score leaderboard bob score signals --signal github --visible true
Agent wallets
bob wallet list [--agent-id <id>] bob wallet balance [--agent-id <id>] bob wallet credit-limit [--agent-id <id>] bob wallet addresses bob wallet register --rail <evm|btc|solana> --address <addr> [--agent-id <id>]
Operator command queue
Operators send commands to agents via the dashboard. Use
bob inbox check# Check for and process pending commands (single check, exit) bob inbox check [--agent-id <id>] # Blocking loop for server agents bob inbox check --poll [--interval 30s]
Currently supported command types:
wallet.provisiontransfer.requestloan.acceptkill_switchkey.rotateHeartbeat
When running during a heartbeat or periodic check-in, execute
bob inbox check --once- If commands are pending, process them and report what was done.
- If no commands are pending, continue with other tasks or reply HEARTBEAT_OK.
For lower-latency command processing, operators can create an OpenClaw cron job:
openclaw cron add --name "bob-inbox-check" --every 5m --session isolated \ --message "Run bob inbox check --once to process pending operator commands. If none are pending, reply HEARTBEAT_OK."
Bind a wallet
bob binding evm-challenge --address <0x...> bob binding evm-verify --challenge-id <id> --address <0x...> --signature <sig> [--chain-id 0x1]
Webhooks and inbox
bob webhook create <agent-id> --url https://example.com/hook --events proof.verified,credit.updated bob webhook list <agent-id> bob webhook get <agent-id> <webhook-id> bob webhook update <agent-id> <webhook-id> --active true bob webhook delete <agent-id> <webhook-id> bob inbox list <agent-id> [--limit 30] [--offset 0] bob inbox ack <agent-id> <event-id> bob inbox events <agent-id> [--limit 30]
API keys
bob api-key list bob api-key create --name <label> bob api-key revoke <key-id>
Output format
{ "ok": true, "command": "bob agent credit-import", "data": {}, "next_actions": [ { "command": "bob score me", "description": "Check updated BOB Score" } ] }
Import MPP receipt (Tempo, Lightning, Stripe, Card)
bob agent mpp-import $BOB_AGENT_ID \ --method tempo \ --reference 0xabc123... \ --challenge-id ch_xxx \ --challenge-intent pay \ --challenge-request <base64url-encoded-json> \ --realm api.merchant.com \ --source did:key:sender... \ --resource-url https://api.merchant.com/v1/chat
Supported methods:
tempolightningstripecardError recovery
| Error | Cause | Fix |
|---|---|---|
| The | Verify the address matches the actual sender on-chain and that it is bound to your agent via |
Passport (W3C Verifiable Credential)
# Step 1: Create auth key binding challenge bob agent auth-key-challenge $BOB_AGENT_ID --alg Ed25519 # → returns challenge_id + message to sign with Ed25519 key # Step 2: Verify auth key binding bob agent auth-key-verify $BOB_AGENT_ID \ --challenge-id <id> \ --kid <key-id> \ --public-key <base64url-ed25519-pubkey> \ --signature <base64url-signature> # Step 3: Issue passport (requires bound auth key) bob agent passport-issue $BOB_AGENT_ID # → returns W3C VC 2.0 signed passport # Get current passport bob agent passport-get $BOB_AGENT_ID
Businesses verify passports with the SDK (policy check — structure, expiry, score, issuer):
import { verifyPassport } from '@bankofbots/sdk' const result = await verifyPassport(passport, { minScore: 400 }) if (!result.valid) return res.status(403).json({ error: result.reason })
from bob import verify_passport result = verify_passport(passport, min_score=400) if not result["valid"]: raise PermissionError(result["reason"])
Important rules
- Amounts are native atomic units: satoshis for BTC, wei for ETH/Base, lamports for SOL.
- Proofs are non-custodial. BOB never holds your funds.
- Historical on-chain proof imports and x402 receipt imports are the current public proof rails.
- For outbound EVM proofs,
is required and must match the on-chain sender — mismatches fail with--sender-address
.sender_address_mismatch