openkrill
Enables AI agents to autonomously make micropayments via the x402 protocol for services like Browserbase and Firecrawl.
Install this skill
Security score
The openkrill skill was audited on Feb 9, 2026 and we found 41 security issues across 2 threat categories, including 1 high-severity. Review the findings below before installing.
Categories Tested
AI Security Analysis
An AI model reviewed this skill's content and provided the following security assessment:
The skill contains multiple instances of data exfiltration patterns through curl commands to external URLs. While these commands are part of the functionality for making micropayments and interacting with APIs, the URLs are not GitHub-related and could potentially lead to unauthorized data access or exfiltration. The intent behind these commands is not entirely clear without further context on how they are used in practice.
Security Issues
Curl to non-GitHub URL
| 37 | curl -s "https://api.cdp.coinbase.com/platform/v2/x402/discovery/resources?type=http&limit=50" |
Curl to non-GitHub URL
| 67 | - Hit the x402 root URL for endpoint listing (e.g., `curl https://x402.browserbase.com/`) |
Curl to non-GitHub URL
| 76 | curl -s -X POST https://api.thirdweb.com/v1/wallets/server \ |
Curl to non-GitHub URL
| 90 | curl -s -X POST "https://api.thirdweb.com/v1/payments/x402/fetch?url=https://x402.browserbase.com/browser/session/create&method=POST" \ |
Curl to non-GitHub URL
| 155 | curl -s -X POST "https://api.thirdweb.com/v1/payments/x402/fetch?url=https://x402.browserbase.com/browser/session/create&method=POST" \ |
Curl to non-GitHub URL
| 208 | DOMAIN=$(curl -s https://api.mail.tm/domains | jq -r '.["hydra:member"][0].domain') |
Curl to non-GitHub URL
| 211 | curl -s -X POST https://api.mail.tm/accounts \ |
Curl to non-GitHub URL
| 220 | TOKEN=$(curl -s -X POST https://api.mail.tm/token \ |
Curl to non-GitHub URL
| 225 | curl -s https://api.mail.tm/messages -H "Authorization: Bearer $TOKEN" |
Curl to non-GitHub URL
| 228 | curl -s https://api.mail.tm/messages/MESSAGE_ID -H "Authorization: Bearer $TOKEN" |
Curl to non-GitHub URL
| 261 | curl -s "https://x402.org/facilitator/discovery/resources?type=http&limit=20" |
Curl to non-GitHub URL
| 264 | curl -s "https://api.cdp.coinbase.com/platform/v2/x402/discovery/resources?type=http&limit=20" |
Curl to non-GitHub URL
| 334 | curl -s https://x402.SERVICE.com/ |
Curl to non-GitHub URL
| 337 | curl -s https://x402.browserbase.com/ |
Curl to non-GitHub URL
| 344 | curl -s -I https://api.SERVICE.com/v1/x402/endpoint |
Curl to non-GitHub URL
| 351 | curl -s -i -X POST https://x402.SERVICE.com/endpoint \ |
External URL reference
| 37 | curl -s "https://api.cdp.coinbase.com/platform/v2/x402/discovery/resources?type=http&limit=50" |
External URL reference
| 67 | - Hit the x402 root URL for endpoint listing (e.g., `curl https://x402.browserbase.com/`) |
External URL reference
| 76 | curl -s -X POST https://api.thirdweb.com/v1/wallets/server \ |
External URL reference
| 90 | curl -s -X POST "https://api.thirdweb.com/v1/payments/x402/fetch?url=https://x402.browserbase.com/browser/session/create&method=POST" \ |
External URL reference
| 106 | "link": "https://thirdweb.com/pay?chain=8453&receiver=0x...&token=0x..." |
External URL reference
| 122 | **URL:** `https://api.thirdweb.com/v1/payments/x402/fetch` |
External URL reference
| 144 | **x402 Endpoint:** `https://x402.browserbase.com` |
External URL reference
| 155 | curl -s -X POST "https://api.thirdweb.com/v1/payments/x402/fetch?url=https://x402.browserbase.com/browser/session/create&method=POST" \ |
External URL reference
| 163 | **x402 Endpoint:** `https://api.firecrawl.dev/v1/x402/search` |
External URL reference
| 190 | **Base URL:** `https://api.mail.tm` |
External URL reference
| 208 | DOMAIN=$(curl -s https://api.mail.tm/domains | jq -r '.["hydra:member"][0].domain') |
External URL reference
| 211 | curl -s -X POST https://api.mail.tm/accounts \ |
External URL reference
| 220 | TOKEN=$(curl -s -X POST https://api.mail.tm/token \ |
External URL reference
| 225 | curl -s https://api.mail.tm/messages -H "Authorization: Bearer $TOKEN" |
External URL reference
| 228 | curl -s https://api.mail.tm/messages/MESSAGE_ID -H "Authorization: Bearer $TOKEN" |
External URL reference
| 261 | curl -s "https://x402.org/facilitator/discovery/resources?type=http&limit=20" |
External URL reference
| 264 | curl -s "https://api.cdp.coinbase.com/platform/v2/x402/discovery/resources?type=http&limit=20" |
External URL reference
| 277 | npx ts-node scripts/discover-services.ts --facilitator "https://api.cdp.coinbase.com/platform/v2/x402" |
External URL reference
| 290 | "resource": "https://x402.browserbase.com/browser/session/create", |
External URL reference
| 334 | curl -s https://x402.SERVICE.com/ |
External URL reference
| 337 | curl -s https://x402.browserbase.com/ |
External URL reference
| 344 | curl -s -I https://api.SERVICE.com/v1/x402/endpoint |
External URL reference
| 351 | curl -s -i -X POST https://x402.SERVICE.com/endpoint \ |
External URL reference
| 378 | - [x402 Protocol](https://x402.org) |
External URL reference
| 380 | - [thirdweb x402 Documentation](https://portal.thirdweb.com/x402) |