菜单
Sign and submit pre-built Cardano transactions via cardano MCP. High-risk: requires structured preview and explicit user confirmation.
用 Codex 或 Claude 帮你安装 复制这段 Prompt,粘贴到 Codex、Claude 或其他助手里,让它检查 Skill 页面并帮你完成安装。
基于 SOC 职业分类
| name | cardano-mcp-transactions |
| description | Sign and submit pre-built Cardano transactions via cardano MCP. High-risk: requires structured preview and explicit user confirmation. |
| allowed-tools | ["Read"] |
| user-invocable | true |
| metadata | {"openclaw":{"emoji":"📤","requires":{"mcp":["cardano"]}}} |
Sign and submit pre-built unsigned transactions through a configured cardano MCP server. This is a high-risk operation — the MCP server has no server-side approval gate and will sign+submit any CBOR passed to it. Safety depends entirely on the preview-confirm flow defined below.
cardano-cli transaction build.cardano MCP server is available.cardano-cli-transactions, meshjs-cardano, or koios-agent-wallet. The MCP server cannot construct transactions.cardano MCP server is configured — use koios-agent-wallet (sign-submit mode) or cardano-cli transaction sign + submit.Before calling submit_transaction, you MUST present a structured preview to the user containing ALL of the following fields:
=== Transaction Preview ===
Network: mainnet (assumed)
Source wallet: addr1qx... (from get_addresses)
Outputs:
1. addr1qy... — 50.000000 ₳
2. addr1qz... — 10.000000 ₳ + 100 HOSKY
Fee: ~0.18 ₳
CBOR fingerprint: <first 16 hex chars>...<last 16 hex chars> (<total bytes> bytes)
Submit this transaction? (yes/no)
If you cannot produce this preview (e.g., you cannot decode the CBOR, or the transaction structure is opaque), you MUST refuse to submit and explain why.
The user must respond with a clear affirmative tied to the preview. Accept: "yes", "confirm", "submit it", "go ahead". Reject: vague responses like "sure", "whatever", "I guess", or any response that doesn't clearly reference the transaction. If ambiguous, ask again.
Each submit_transaction call requires its own preview-confirm cycle. Never batch or auto-submit.
State what you cannot verify and suggest the user use CLI or Koios skills with explicit network flags instead.
The MCP server handles signing internally. Never prompt for mnemonics, private keys, or signing keys.
Current integration assumes mainnet unless testnet support is explicitly validated against the configured MCP server. If the user states they are on testnet, do NOT use this skill — route to koios-agent-wallet or cardano-cli-transactions-operator with explicit network flags.
submit_transactionSign and submit an unsigned transaction from the connected wallet.
{ cbor: string } — unsigned transaction CBOR hex{ transactionHash: string, timestamp: number }{ content: [{ type: "text", text: "Unable to submit transaction : <error>" }] }fromTx().sign.withWallet())The MCP server cannot build transactions. The unsigned CBOR must come from elsewhere:
| Source | How to get unsigned CBOR |
|---|---|
| MeshTxBuilder | await txBuilder.complete() → extract hex |
| cardano-cli | cardano-cli transaction build ... --out-file tx.raw → read file |
| dApp API | Capture from mint/swap API response (txCbor, unsignedTx, etc.) |
| koios-agent-wallet | agent-wallet.js can build unsigned tx in some modes |
Transaction submission:
1. cardano MCP (if configured + preview confirmed) ← this skill
2. koios-agent-wallet MODE=sign-submit (key-based, any network)
3. cardano-cli transaction sign + submit (CLI, any network)
Unsupported or uncertain network → fail closed, do not silently switch providers.
| Layer | Responsibility |
|---|---|
| MCP server process | Holds seed phrase in env, signs CBOR, submits to chain. No approval gate. |
| This skill | Enforces preview-confirm flow. Refuses opaque/unverifiable transactions. |
| MCP client UI | User approves/denies individual tool calls. |
| User | Reviews preview, gives explicit confirmation. |
The seed phrase never leaves the MCP server process. The agent never sees key material. Safety depends on the preview-confirm flow in this skill and the user's own review.
shared/mcp-provider.mdshared/PRINCIPLES.mdcardano-cli-transactions (CLI tx building guidance)cardano-cli-transactions-operator (CLI tx execution)koios-agent-wallet (Koios sign+submit)meshjs-cardano (MeshJS tx building)Read-only wallet state via cardano MCP: balances, addresses, and UTxOs. Requires a configured cardano MCP server.
Retrieve ADAHandle identities ($handle) for the connected wallet via cardano MCP. Read-only.
Query staking delegation status and available rewards via cardano MCP. Read-only, no delegation changes.
"Aiken workflows: validators, building, blueprints, .plutus generation. Safe guidance for smart contract development."
"Diagnose cardano-cli: version, era-prefixed vs legacy syntax, network flags. Produces compatibility report."
Manual-only operator command for Cardano CLI: dispatches directly to OpenClaw Exec Tool (no model) so you can run deterministic, approval-gated cardano-cli commands (native or Docker fallback).