payram-openclaw-integration
Fail
Audited by Gen Agent Trust Hub on May 18, 2026
Risk Level: HIGHREMOTE_CODE_EXECUTIONEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [REMOTE_CODE_EXECUTION]: The skill instructs the user to execute a setup script directly from a remote URL via
bash <(curl -fsSL https://payram.com/setup_payram_agents.sh). While this originates from the vendor's own domain, executing remote scripts directly in the shell is a high-risk pattern. - [EXTERNAL_DOWNLOADS]: The skill references and downloads a setup script from the author's official website (
payram.com). - [COMMAND_EXECUTION]: The guide provides multiple shell commands for agent configuration, contract deployment, and payment link generation.
- [PROMPT_INJECTION]: The integration flow processes data from external webhooks (e.g.,
payment.confirmedevents), creating a surface for indirect prompt injection where transaction metadata could influence agent behavior. - Ingestion points: External webhook listener (e.g.,
POST https://your-webhook.example.com/) processing JSON payloads. - Boundary markers: No specific delimiters or warnings to ignore embedded content are included in the implementation guide.
- Capability inventory: The agent is granted capabilities to call payment tools and execute shell commands described in the setup.
- Sanitization: No specific sanitization or data validation logic is outlined for the webhook handler.
Recommendations
- HIGH: Downloads and executes remote code from: https://payram.com/setup_payram_agents.sh - DO NOT USE without thorough review
Audit Metadata