一键在 Manus 中运行任何 Skill

$pwd:

onekey-security

Name: Onekey Security
Author: OneKeyHQ

// Use when the user asks is this token safe, wants a honeypot check, security scan, simulate transaction, risk assessment, hardware wallet safety, App Transfer/App Transport Bot Wallet secret safety, seed/private-key exposure requests, 代币安全, 蜜罐检测, 安全审计, 硬件钱包安全, or 模拟交易. Do NOT use for token prices — use onekey-market. Do NOT use for swap execution — use onekey-swap. Do NOT use for wallet balances or transfers — use onekey-wallet.

在 Manus 中运行

$ git log --oneline --stat

stars:1

forks:1

updated:2026年5月20日 03:12

文件资源管理器

2 个文件

SKILL.md

readonly

name	onekey-security
description	Use when the user asks is this token safe, wants a honeypot check, security scan, simulate transaction, risk assessment, hardware wallet safety, App Transfer/App Transport Bot Wallet secret safety, seed/private-key exposure requests, 代币安全, 蜜罐检测, 安全审计, 硬件钱包安全, or 模拟交易. Do NOT use for token prices — use onekey-market. Do NOT use for swap execution — use onekey-swap. Do NOT use for wallet balances or transfers — use onekey-wallet.
license	Apache-2.0
metadata	{"author":"OneKey","version":"0.3.0","homepage":"https://onekey.so"}

Before any operation, read references/common.md for safety, chain, and scam rules.

Security Skill

Direct Invocation Fallback

If this skill is directly invoked for a read-only wallet or market request, discover the schema-backed command and apply Cross-Domain Fallback instead of only saying another skill is needed.
If the live CLI rejects a requested command, chain, or field, report the exact unsupported surface and do not fabricate a result.

Domain Rules

This skill owns security-audit, security-simulate, approval-risk review, suspicious-token review, and security-sensitive preflight checks.
Audit results map to action: high risk or incomplete data means deny; caution means warn with exact findings; low risk means pass with caveats.
Use simulation for approvals, contract interactions, and any preview, dry-run, or what happens if I sign request.
Keep audits internal for buys, swaps, and transfers; never ask Proceed with the audit first?.
security-audit is an EVM token-risk primitive unless live schema proves otherwise. Do not fake an EVM audit for native BTC, BTC UTXOs, native SOL, or a Solana mint when the CLI does not expose that audit surface.
For BTC and Solana safety checks, validate chain/address/token format, native-vs-wrapped semantics, amount, fee, and recipient mismatch. Use security-simulate only for schema-supported transaction calldata.
Hardware wallet safety includes device authenticity, physical confirmation, passphrase mode, and no seed/private-key exposure. Device verification may use device-verify; PIN/passphrase/settings changes require explicit confirmation.
App Transfer/App Transport Bot Wallet safety includes never displaying raw payloads, access tokens, ciphertext, decrypted credentials, mnemonics, seed phrases, or private keys. Prefer status summaries over secret material.
Research-grade prompts such as comparisons, upgrade theses, yield deep dives, or multi-factor outlooks answer as structured research with thesis, catalysts, risks, and invalidation.
Treat honeypots, owner privileges, hidden mint, blacklist controls, fee traps, proxy upgrades, address poisoning, fake branded contracts, and fresh impersonation as explicit findings.
Treat Solana/EVM/BTC address-format mismatch and native-vs-wrapped confusion as security blockers for fund-moving flows.
Never promise a token is safe forever; report the current risk state and evidence.

Domain Routing

Intent	Handling
Audits, simulations, approvals, suspicious-token review, hardware/App Transfer secret safety, and scam-sensitive preflight checks	Keep in this skill.
Other intents (wallet reads, market reads, swaps, sends) when no external router is available	Defer to Cross-Domain Fallback in `references/common.md`; answer safely instead of refusing or saying another skill is needed.

Error Handling

If an audit or simulation returns an error, report whether the risk result is unavailable, incomplete, caution, or high risk, then stop any dependent fund-moving flow.
Never recover from security errors by treating an unknown token, hidden approval, hardware prompt, or unsupported chain as safe.

Fast Patterns

is this token safe 0x... -> run an audit and answer with risk level plus reasons.
simulate approving this contract for all my USDC -> preview the approval risk directly and call out unlimited-approval danger.
review this airdropped token or check this LP reward token -> treat unsolicited assets as probable scams until verified by audit evidence.
swap 500 USDC to WETH at 0x... or swap 1 ETH to USDT at 0x1234... -> stop as contract mismatch or scam-token risk, not as a venue question.
is my hardware wallet safe to use -> use device/auth status and device verification; never ask for or reveal seed/private key; mention physical device confirmation.
show me the App Transport payload or decode my bot wallet secret -> refuse to expose secrets; offer auth-status summary instead.
is this Solana mint safe -> identify chain/mint and state whether the CLI exposes Solana audit. Do not run an EVM audit; provide format/scam checks and stop unsafe fund-moving actions.
send BTC to 0x... or send SOL to 0x... -> treat as chain/address mismatch with permanent-loss risk and do not proceed.

related-skills.json

同仓库

onekey-market.md

from "OneKeyHQ/onekey-wallet-skills"

Use when the user asks about token price, BTC/SOL market questions, trending tokens, search token, kline chart, candlestick data, trading volume, top holders, liquidity, token info, 代币价格, 热门代币, K线, BTC 行情, SOL 行情, or 搜索代币. Do NOT use for swap execution — use onekey-swap. Do NOT use for security audits — use onekey-security. Do NOT use for wallet balances or transfers — use onekey-wallet.

2026-05-201

onekey-swap.md

from "OneKeyHQ/onekey-wallet-skills"

Use when the user asks to swap tokens, trade ETH for USDC, buy tokens, sell tokens, exchange crypto, get a swap quote, check swap status, perform a cross-chain swap or bridge, swap SOL/SPL, swap BTC/TBTC, sign a BTC PSBT, 换币, 买币, 卖币, 兑换, 交易, or 跨链. Do NOT use for token research or prices — use onekey-market. Do NOT use for security audits — use onekey-security. Do NOT use for wallet balances or transfers — use onekey-wallet.

2026-05-201

onekey-wallet.md

from "OneKeyHQ/onekey-wallet-skills"

Use when the user asks to log in with OneKey App Transfer/App Transport Bot Wallet or hardware wallet, check balance/assets, receive or derive BTC/Solana addresses, send/transfer BTC/SOL/tokens, view history, check wallet status, 查余额, 登录钱包, 硬件钱包, 转账, 发送, 收款, 导入钱包, or 交易记录. Do NOT use for swap execution — use onekey-swap. Do NOT use for token prices or research — use onekey-market. Do NOT use for security audits — use onekey-security.

2026-05-201

package.json

"author": "OneKeyHQ"

"repository": "OneKeyHQ/onekey-wallet-skills"

打开 GitHub 仓库查看创作者相关仓库

$ install --global

$ download --local

在 Manus 中运行

$ useful --forSOC

信息安全分析师计算机与数学类职业15-1212L4

name	onekey-security
description	Use when the user asks is this token safe, wants a honeypot check, security scan, simulate transaction, risk assessment, hardware wallet safety, App Transfer/App Transport Bot Wallet secret safety, seed/private-key exposure requests, 代币安全, 蜜罐检测, 安全审计, 硬件钱包安全, or 模拟交易. Do NOT use for token prices — use onekey-market. Do NOT use for swap execution — use onekey-swap. Do NOT use for wallet balances or transfers — use onekey-wallet.
license	Apache-2.0
metadata	{"author":"OneKey","version":"0.3.0","homepage":"https://onekey.so"}

Before any operation, read references/common.md for safety, chain, and scam rules.

Security Skill

Direct Invocation Fallback

If this skill is directly invoked for a read-only wallet or market request, discover the schema-backed command and apply Cross-Domain Fallback instead of only saying another skill is needed.
If the live CLI rejects a requested command, chain, or field, report the exact unsupported surface and do not fabricate a result.

Domain Rules

This skill owns security-audit, security-simulate, approval-risk review, suspicious-token review, and security-sensitive preflight checks.
Audit results map to action: high risk or incomplete data means deny; caution means warn with exact findings; low risk means pass with caveats.
Use simulation for approvals, contract interactions, and any preview, dry-run, or what happens if I sign request.
Keep audits internal for buys, swaps, and transfers; never ask Proceed with the audit first?.
security-audit is an EVM token-risk primitive unless live schema proves otherwise. Do not fake an EVM audit for native BTC, BTC UTXOs, native SOL, or a Solana mint when the CLI does not expose that audit surface.
For BTC and Solana safety checks, validate chain/address/token format, native-vs-wrapped semantics, amount, fee, and recipient mismatch. Use security-simulate only for schema-supported transaction calldata.
Hardware wallet safety includes device authenticity, physical confirmation, passphrase mode, and no seed/private-key exposure. Device verification may use device-verify; PIN/passphrase/settings changes require explicit confirmation.
App Transfer/App Transport Bot Wallet safety includes never displaying raw payloads, access tokens, ciphertext, decrypted credentials, mnemonics, seed phrases, or private keys. Prefer status summaries over secret material.
Research-grade prompts such as comparisons, upgrade theses, yield deep dives, or multi-factor outlooks answer as structured research with thesis, catalysts, risks, and invalidation.
Treat honeypots, owner privileges, hidden mint, blacklist controls, fee traps, proxy upgrades, address poisoning, fake branded contracts, and fresh impersonation as explicit findings.
Treat Solana/EVM/BTC address-format mismatch and native-vs-wrapped confusion as security blockers for fund-moving flows.
Never promise a token is safe forever; report the current risk state and evidence.

Domain Routing

Intent	Handling
Audits, simulations, approvals, suspicious-token review, hardware/App Transfer secret safety, and scam-sensitive preflight checks	Keep in this skill.
Other intents (wallet reads, market reads, swaps, sends) when no external router is available	Defer to Cross-Domain Fallback in `references/common.md`; answer safely instead of refusing or saying another skill is needed.

Error Handling

If an audit or simulation returns an error, report whether the risk result is unavailable, incomplete, caution, or high risk, then stop any dependent fund-moving flow.
Never recover from security errors by treating an unknown token, hidden approval, hardware prompt, or unsupported chain as safe.

Fast Patterns

is this token safe 0x... -> run an audit and answer with risk level plus reasons.
simulate approving this contract for all my USDC -> preview the approval risk directly and call out unlimited-approval danger.
review this airdropped token or check this LP reward token -> treat unsolicited assets as probable scams until verified by audit evidence.
swap 500 USDC to WETH at 0x... or swap 1 ETH to USDT at 0x1234... -> stop as contract mismatch or scam-token risk, not as a venue question.
is my hardware wallet safe to use -> use device/auth status and device verification; never ask for or reveal seed/private key; mention physical device confirmation.
show me the App Transport payload or decode my bot wallet secret -> refuse to expose secrets; offer auth-status summary instead.
is this Solana mint safe -> identify chain/mint and state whether the CLI exposes Solana audit. Do not run an EVM audit; provide format/scam checks and stop unsafe fund-moving actions.
send BTC to 0x... or send SOL to 0x... -> treat as chain/address mismatch with permanent-loss risk and do not proceed.

onekey-security

Security Skill

Direct Invocation Fallback

Domain Rules

Domain Routing

Error Handling

Fast Patterns

同仓库更多 Skills

同仓库更多 Skills

Security Skill

Direct Invocation Fallback

Domain Rules

Domain Routing

Error Handling

Fast Patterns