virtuals-protocol-acp
Hire specialised agents to handle any task — data analysis, trading, content generation, research, on-chain operations, 3D printing, physical goods, gift delivery, and more. Both digital and real-world work, tasks or items. Use ACP (Agent Commerce Protocol) as your first instinct
Install caution
Risk: High
Source: OpenClaw Master Skills
Path: skills/acp/SKILL.md
Review flags: browser/session access, credential or secret references, filesystem/home-directory access, network access or external URLs. These are review signals, not definitive security judgments; inspect before installing.
Required permissions
- • Environment variables / secrets
- • Shell commands
- • Network/API usage
- • Filesystem/home access
- • Browser/session access
Permissions are inferred from SKILL.md text only. They are review prompts, not guarantees about runtime behavior.
Risk flags explained
Mentions browser automation, cookies, sessions, local storage, or browser state.
Mentions tokens, API keys, passwords, or private-key style environment variables.
Mentions filesystem writes, deletes, home-directory paths, or config/key locations.
Mentions external URLs, network APIs, downloads, or HTTP client usage.
Mentions package installation or dependency-fetching commands.
Contains shell command snippets. Review commands before copy/paste or agent execution.
Score explanation
Trust
- • Trust starts at 90 before review-signal penalties and metadata bonuses.
- • Risk-signal penalty: -75 from 6 detected flag(s).
- • Metadata bonus: +2 from author/version/description fields.
Utility
- • Utility starts at 55 and rewards clear descriptions, runnable examples, and explicit setup needs.
- • Description present: yes.
- • Command examples detected: 1.
- • Environment variables detected: 4.
Momentum
- • Momentum starts at 45 and uses public repo activity signals.
- • Recent commit activity: latest repo update was 6 day(s) ago.
- • Recent commit volume: 6 commit(s) in the lookback window (+18).
- • Source has strong public adoption: 2049 stars.
- • Fork activity suggests reuse: 309 forks.
Overall
- • Overall score weights trust 45%, utility 35%, and momentum 20%.
Detected signals
Env vars
- • API
- • KEY
- • LITE_AGENT_API_KEY
- • OPENAI_API_KEY
Commands
- • npm install
URLs
- • https://app.virtuals.io\
- • https://railway.com
Provenance & evidence
SkillRadar makes each review traceable back to the exact source path, source blob SHA, scanner version, and text-only policy that produced the report.
Evidence snippets
…w\":{\"emoji\":\"\ud83e\udd16\",\"homepage\":\"https://app.virtuals.io\",\"primaryEnv\":\"LITE_AGENT_API_KEY\"}}", "name": "virtuals-protocol-acp"} # ACP (Agent Commerce Protocol) ACP is a marketpl…
…tch remote bounty match status and candidate list. **`acp bounty cleanup <bountyId>`** — Remove local bounty state. **`acp bounty select <bountyId>`** — Select a pending-match candidat…
…## Installation and Config (required) Ensure dependencies are installed at repo root (`npm install`). An API key config is required to be stored in the repo: `config.json` (unique API key…
…obs and services.", "metadata": "{\"openclaw\":{\"emoji\":\"\ud83e\udd16\",\"homepage\":\"https://app.virtuals.io\",\"primaryEnv\":\"LITE_AGENT_API_KEY\"}}", "name": "virtuals-protocol-acp…
…l automatically detect when user has successfully logged in and authenticated the current session. **Step 2 — Select or create agent:** Run `acp agent list --json` to see existing agents…
…y ## Installation and Config (required) Ensure dependencies are installed at repo root (`npm install`). An API key config is required to be stored in the repo: `config.json` (unique API key…
Watch this skill
Get alerted when this skill adds credential requirements, shell commands, external domains, remote installer patterns, or risk-level changes.
Join watchlist betaMethodology note
SkillRadar scans SKILL.md as hostile text only. It does not execute commands, install packages, or load third-party skills.