Skills
skills/okx/onchainos-skills/okx-agentic-wallet

okx-agentic-wallet

Installation
SKILL.md

Onchain OS Wallet

Wallet operations: authentication, balance, token transfers, transaction history, and smart contract calls.

Step 0 — Re-route check (run before every other step)

Before running any onchainos wallet command, classify the user's intent.

A. Named DApp + action verb → re-route to okx-dapp-discovery

Strong signal — a third-party protocol is explicitly named and the user wants to act on it.

  • DApp names: Polymarket, Aave, Hyperliquid, PancakeSwap, Morpho, Raydium, Curve, Compound, Pendle, Lido, ether.fi, GMX, Kamino, Orca, Meteora, Clanker, Uniswap, pump.fun
  • Action verbs (EN/ZH): buy, sell, swap, deposit (into protocol), stake, borrow, lend, long, short, claim, farm, snipe, 买/卖/换/存/质押/借/做多/做空/狙击/挖矿

Examples that MUST re-route to okx-dapp-discovery:

  • "deposit USDC into Aave", "long ETH on Hyperliquid", "stake ETH on Lido", "claim rewards on Morpho", "在 Curve 上把 USDC 换成 USDT"

B. Trade verb on a token (with or without protocol-native token) → defer to okx-dex-swap

Trade verbs (buy / sell / swap / trade / exchange / 买 / 卖 / 换) are not wallet operations. Even when a protocol-native token (HYPE, HLP, CAKE, eETH, stETH, etc.) appears, the prompt is ambiguous between a DEX swap and a DApp-plugin route — let okx-dex-swap evaluate, since its own Step 0 will chain into okx-dapp-discovery if appropriate.

Examples:

  • "buy HYPE", "swap to eETH", "sell my CAKE", "买 LDO" → invoke okx-dex-swap with the original prompt; do NOT directly invoke okx-dapp-discovery from here.

C. Pure wallet operation → stay

Stay in this skill when the prompt is one of:

  • Auth: login, OTP verify, add/switch/status/logout account, export wallet/mnemonic
  • Read: balance, assets, holdings, addresses, history, tx status — including reads on protocol-native tokens ("show my HYPE balance", "how much stETH do I have")
  • Direct send/sign: send X to <address>, transfer, pay, top up, sign-message, personalSign, EIP-712, TEE signing
  • Wallet-side approval: approve <token> alone (one-off ERC-20 approval primitive, not paired with a swap/stake action)
  • Gas Station: any question about Gas Station, EIP-7702, stablecoin gas, default gas token, revoke 7702

Disambiguating edge cases

  • "deposit X into Aave / HLP / Morpho" → A (re-route to dapp-discovery; protocol named)
  • "deposit / receive into my wallet" → C (top-up to wallet address)
  • "approve HYPE" alone → C (ERC-20 approval primitive)
  • "approve and swap HYPE on Hyperliquid" → A (the action is the swap on Hyperliquid)
  • "buy HYPE" → B (no DApp named, trade verb; defer to dex-swap)
  • "send HYPE to my friend" → C (transfer is a wallet op)

If you have already started running commands and only then realise A or B applies, halt and invoke the correct skill — do not finish the wallet operation.

Instruction Priority

This document uses tagged blocks to indicate rule severity. In case of conflict, higher priority wins:

  1. <NEVER> — Absolute prohibition. Violation may cause irreversible fund loss. Never bypass.
  2. <MUST> — Mandatory step. Skipping breaks functionality or safety.
  3. <SHOULD> — Best practice. Follow when possible; deviation acceptable with reason.

Pre-flight Checks

Parameter Rules

--chain Resolution

--chain accepts both numeric chain ID (e.g. 1, 501, 196) and human-readable names (e.g. ethereum, solana, xlayer).

  1. Translate user input into a CLI-recognized chain name or numeric ID (e.g. "币安链" → bsc, "以太坊" → ethereum). The CLI recognizes: ethereum/eth, solana/sol, bsc/bnb, polygon/matic, arbitrum/arb, base, xlayer/okb, avalanche/avax, optimism/op, fantom/ftm, sui, tron/trx, ton, linea, scroll, zksync, plus any numeric chain ID.
  2. If <100% confident in the mapping → ask user to confirm before calling.
  3. Pass the resolved name or ID to --chain.
  4. If the command returns "unsupported chain: ...", the name was not in the CLI mapping. Ask the user to confirm, and run onchainos wallet chains to show the full supported list.

If no confident match: do NOT guess — ask the user. Display chain names as human-readable (e.g. "Ethereum", "BNB Chain"), never IDs.

Example flow:

# User says: "Show my balance on Ethereum"
          → onchainos wallet balance --chain ethereum
# Also valid: onchainos wallet balance --chain 1

Error handling:

# User says: "Show my balance on Fantom"
          → onchainos wallet balance --chain fantom
# If CLI returns "unsupported chain: fantom":
#   → Ask user: "The chain 'Fantom' was not recognized. Its chain ID is 250 — would you like me to try with that?"
#   → Or run `onchainos wallet chains` to check if the chain is supported

Amount

wallet send: pass --readable-amount <human_amount> — CLI auto-converts (native: EVM=18, SOL/SUI=9 decimals; ERC-20/SPL: fetched from API). Never compute minimal units manually. Use --amt only for raw minimal units.

wallet contract-call: --amt is the native token value attached to the call (payable functions only), in minimal units. Default "0" for non-payable. EVM=18 decimals, SOL=9.

Command Index

CLI Reference: For full parameter tables, return field schemas, and usage examples, see cli-reference.md.

A — Account Management

Login commands (wallet login, wallet verify) are covered in Step 2: Authentication.

# Command Description Auth Required
A3 onchainos wallet add Add a new wallet account Yes
A4 onchainos wallet switch <account_id> Switch to a different wallet account No
A5 onchainos wallet status Show current login status, active account, and policy settings No
A6 onchainos wallet logout Logout and clear all stored credentials No
A7 onchainos wallet chains List all supported chains with names and IDs No
A8 onchainos wallet addresses [--chain <chain>] Show wallet addresses grouped by chain category (X Layer, EVM, Solana) No

B — Authenticated Balance

# Command Description Auth Required
B1 onchainos wallet balance Current account overview — EVM/SOL addresses, all-chain token list and total USD value Yes
B2 onchainos wallet balance --chain <chain> Current account — all tokens on a specific chain Yes
B3 onchainos wallet balance --chain <chain> --token-address <addr> Current account — specific token by contract address (requires --chain) Yes
B4 onchainos wallet balance --all All accounts batch assets — only use when user explicitly asks to see every account Yes
B5 onchainos wallet balance --force Force refresh — bypass all caches, re-fetch from API Yes

D — Transaction

# Command Description Auth Required
D1 onchainos wallet send Send native or contract tokens. Validates recipient format; simulation failure → show executeErrorMsg, do NOT broadcast. Yes
D2 onchainos wallet contract-call Call a smart contract with custom calldata. Run onchainos security tx-scan first. Yes

The --force flag MUST ONLY be added when ALL of the following conditions are met:

  1. You have already called the command without --force once.
  2. The API returned a confirming response (exit code 2, "confirming": true).
  3. You displayed the message to the user and the user explicitly confirmed they want to proceed.

Determine intent before executing (wrong command → loss of funds):

Intent Command Example
Send native token (ETH, SOL, BNB…) wallet send --chain <chain> "Send 0.1 ETH to 0xAbc"
Send ERC-20 / SPL token (USDC, USDT…) wallet send --chain <chain> --contract-token "Transfer 100 USDC to 0xAbc"
Interact with a smart contract (approve, deposit, withdraw, custom function call…) wallet contract-call --chain <chain> "Approve USDC for spender", "Call withdraw on contract 0xDef"

If the intent is ambiguous, always ask the user to clarify before proceeding. Never guess.

D-GS — Gas Station

Pay gas with stablecoins (USDT/USDC/USDG) when native token is insufficient. Activates automatically during wallet send.

# Command Description Auth Required
D-GS1 onchainos wallet gas-station update-default-token Change the default gas payment token for a chain Yes
D-GS2 onchainos wallet gas-station enable Turn Gas Station back on for a chain that previously had it enabled. (Internal: DB flag flip; requires prior on-chain setup. First-time activation still happens through wallet send.) Yes
D-GS3 onchainos wallet gas-station disable Turn Gas Station off for a chain; the chain reverts to paying gas with native token. (Internal: DB flag flip only, no on-chain action.) Yes
D-GS4 onchainos wallet gas-station status Read-only Gas Station readiness check on a chain. Used by third-party plugin pre-flight: agent runs this before invoking a plugin's on-chain command, branches on the returned recommendation (READY / ENABLE_GAS_STATION / REENABLE_GAS_STATION / PENDING_UPGRADE / INSUFFICIENT_ALL / HAS_PENDING_TX). Never broadcasts. Yes
D-GS5 onchainos wallet gas-station setup Standalone first-time activation, decoupled from wallet send. Required when a third-party plugin will perform contract-call and native gas is insufficient. Idempotent: re-calling with the same default token returns alreadyActivated=true; with a different token, switches default. Yes

The "(Internal: ...)" parentheticals above are Agent-internal background — they explain the command's mechanism so the Agent can reason about it. Never paraphrase them into a user-facing reply. For user-facing reply wording (pre-confirmation prompts and success messages for enable / disable / update-default-token), use the sanctioned templates in references/gas-station.md → "User-Facing Reply Templates (Management Commands)".

Load references/eip7702-upgrade.md only when the response contains needUpdate7702=true or authHashFor7702. Never expose 7702 terminology to the user — see Global Notes vocabulary table.

  1. Treat the intent as "ask about OKX Agentic Wallet Gas Station".
  2. Answer using the verbatim FAQ templates in references/gas-station.md → FAQ section. Translate to the user's language; do NOT paraphrase the content.
  3. Do NOT answer from general training knowledge about ERC-4337, Paymaster, Biconomy, Gelato, Pimlico, Alchemy Account Kit, meta-transactions, or any third-party gas-abstraction protocol. Do NOT frame OKX Gas Station as "a category of services" or "one of several paymaster solutions".
  4. Do NOT list alternative/competing protocols unless the user explicitly asks for comparisons. Even then, keep the scope limited and avoid implying OKX Gas Station is interchangeable with generic paymaster/relayer tech.

E — History

# Mode Command Description Auth Required
E1 List onchainos wallet history Browse recent transactions with optional filters Yes
E2 Detail onchainos wallet history --tx-hash <hash> --chain <chain> --address <addr> Look up a specific transaction by hash Yes

F — Sign Message

# Command Description Auth Required
F1 onchainos wallet sign-message --chain <chain> --from <addr> --message <msg> personalSign (EIP-191). Supports EVM and Solana. Default mode. Supports --force to bypass confirmation prompts. Yes
F2 onchainos wallet sign-message --chain <chain> --from <addr> --type eip712 --message <json> EIP-712 typed structured data. EVM only. Supports --force to bypass confirmation prompts. Yes

Confirming Response

Some commands return confirming (exit code 2) when backend requires user confirmation (e.g., high-risk tx).

Output format

{
  "confirming": true,
  "message": "The human-readable prompt to show the user.",
  "next": "Instructions for what the agent should do after user confirms."
}

How to handle

  1. Display the message field to the user and ask for confirmation.
  2. If the user confirms: follow the instructions in the next field (typically re-running the same command with --force flag appended).
  3. If the user declines: do NOT proceed. Inform the user the operation was cancelled.

Example flow

# 1. Run command without --force
onchainos wallet send --readable-amount "0.1" --recipient "0xAbc..." --chain 1
# → exit code 2, confirming: true → show message to user

# 2. User confirms → re-run with --force
onchainos wallet send --readable-amount "0.1" --recipient "0xAbc..." --chain 1 --force

Third-Party Plugin Pre-flight

When the user invokes a third-party DeFi plugin (e.g. aave-v3-plugin, uniswap-plugin) that internally calls onchainos wallet contract-call --force, the plugin is a black box — its error messages may not surface Gas Station issues. The agent MUST proactively pre-flight Gas Station status on the target chain.

Pre-flight checklist

Before dispatching ANY third-party plugin command that performs an on-chain write (--confirm / execute / --broadcast / etc.), the agent MUST:

  1. Resolve <chain> and <from> from the plugin invocation.
  2. Run: 
    onchainos wallet gas-station status --chain <chain> [--from <addr>]
  3. Branch on data.recommendation:
Recommendation Action
READY Proceed directly to plugin invocation.
ENABLE_GAS_STATION Render references/gas-station.md Scene A using data.tokenList. After user confirms a token pick, run wallet gas-station setup --chain <C> --gas-token-address <picked> --relayer-id <picked>. Then proceed to the original plugin command.
REENABLE_GAS_STATION Render Scene B'. After user confirms, wallet gas-station setup .... Then proceed.
PENDING_UPGRADE Render Scene A'. After user confirms, wallet gas-station setup ... (carries 7702 material). Then proceed.
INSUFFICIENT_ALL Tell user to top up native or stablecoin. Do NOT invoke plugin.
HAS_PENDING_TX Tell user to wait for the pending tx (or run wallet gas-station disable --chain <C> to bypass). Do NOT invoke plugin.

Pre-flight skip conditions

  • Plugin invocation is dry-run / simulation (no on-chain write)
  • Plugin is a read-only command (e.g. aave-v3-plugin positions, health-factor, reserves, quickstart)
  • The agent has already pre-flighted this (chain, from) tuple in the current conversation and confirmed gasStationActivated = true

Reactive diagnosis (post-failure fallback)

If a third-party plugin returned a vague error (e.g. "Pool.supply() failed", "swap failed") and the message does NOT clearly explain the cause, follow the canonical recovery flow in references/gas-station.md → "Plugin Bail Recovery".

In short, in priority order:

  1. Fast path — parse the plugin's bubbled-up stderr/stdout for an onchainos response with "errorCode": "GAS_STATION_SETUP_REQUIRED" (exit code 3). Extract data.tokenList directly and proceed to Scene A → wallet gas-station setup → re-invoke plugin. No extra CLI call.
  2. Slow path — if the plugin ate stdout, run onchainos wallet gas-station status --chain <chain> [--from <addr>] and branch on recommendation per the Pre-flight checklist above.
  3. Otherwise — surface the plugin's raw error to the user.

Exit codes from wallet contract-call --force / wallet send --force

Exit Meaning Agent action
0 Success Continue
1 Real error (logic / chain / etc.) Surface error to user
2 Confirming required (non---force path; should NOT happen with --force) Treat as bug; show message
3 errorCode: GAS_STATION_SETUP_REQUIRED--force cannot silently auto-enable GS Render Scene A from data.tokenList, run wallet gas-station setup, re-invoke same command

User-Facing Message Templates

IMPORTANT: Several sections below instruct the Agent to output the Wallet Export template or the Policy Settings template. When triggered, print the matching template verbatim (translated to the user's language). The link and trailing navigation sentence are chosen by loginType (from wallet status, or the login / verify response). If loginType is unknown, run onchainos wallet status first; treat any unrecognized value as email.

Template: Wallet Export

Wallet export must be completed on the Web portal. Please note: once the export is complete, your current wallet will be permanently unbound from your email, and the Agent will no longer be able to operate this wallet. The system will automatically create a new empty wallet for your account. Before exporting, please transfer your assets to a safe address and stop any running strategies. Go to Wallet Export → {export_url}

{export_hint}

loginType {export_url} {export_hint}
email https://web3.okx.com Log in to your Agentic Wallet, then hover over your profile in the top-right corner and select "Export Wallet" from the dropdown menu.
ak https://web3.okx.com/zh-hans/onchainos/dev-portal Log in the Developer Portal using a plugin wallet or the OKX Wallet App that manages your API Key, and click Agentic Wallet → Wallet Export.

Template: Policy Settings

You can set per-transaction and daily limits for trades and transfers, as well as a transfer whitelist, to prevent excessive operations or transfers to unauthorized addresses. Go to Policy Setting → {policy_url}

{policy_hint}

loginType {policy_url} {policy_hint}
email https://web3.okx.com/portfolio/agentic-wallet-policy Log in to your Agentic Wallet, then hover over your profile in the top-right corner and select "Policy Setting" from the dropdown menu.
ak https://web3.okx.com/zh-hans/onchainos/dev-portal Log in with the EOA wallet that created the Agentic Wallet and open the OKX Web3 Dev platform, and click on the Agentic Wallet - Policy Setting in the upper right corner to set security rules.

Authentication

For commands requiring auth (sections B, D, E), check login state:

  1. Run onchainos wallet status. If loggedIn: true, proceed.
  2. If not logged in, or the user explicitly requests to re-login:
    • 2a. Display the following message to the user verbatim (translated to the user's language):

      You need to log in with your email first before adding a wallet. What is your email address? We also offer an API Key login method that doesn't require an email. If interested, visit https://web3.okx.com/onchainos/dev-docs/home/api-access-and-usage

    • 2b. Once the user provides their email, run: onchainos wallet login <email> --locale <locale>. Then display the following message verbatim (translated to the user's language):

      English: "A verification code has been sent to {email}. Please check your inbox and tell me the code." Chinese: "验证码已发送到 {email},请查收邮件并告诉我验证码。" Once the user provides the code, run: onchainos wallet verify <code>. AI should always infer --locale from conversation context and include it:

      • Chinese (简体/繁体, or user writes in Chinese) → zh-CN
      • Japanese (user writes in Japanese) → ja-JP
      • English or any other language → en-US (default)

      If you cannot confidently determine the user's language, default to en-US.

  3. If the user declines to provide an email:
    • 3a. Display the following message to the user verbatim (translated to the user's language):

      We also offer an API Key login method that doesn't require an email. If interested, visit https://web3.okx.com/onchainos/dev-docs/home/api-access-and-usage

    • 3b. If the user confirms they want to use API Key, first check whether an API Key switch is needed: Use the wallet status result (from step 1 or re-run). If loginType is "ak" and the returned apiKey differs from the current environment variable OKX_API_KEY, show both keys to the user and ask to confirm the switch. If the user confirms, run onchainos wallet login --force. If apiKey is absent, empty, or identical, skip the confirmation and run onchainos wallet login directly.
    • 3c. After silent login succeeds, inform the user that they have been logged in via the API Key method.
  4. After login succeeds, display the full account list with addresses by running onchainos wallet balance.
  5. New user check: If the wallet verify or wallet login response contains "isNew": true, output the Policy Settings template followed by the Wallet Export template (see "User-Facing Message Templates"). If "isNew": false, skip this step.

After successful login: a wallet account is created automatically — never call wallet add unless the user is already logged in and explicitly requests an additional account.

MEV Protection

The contract-call command supports MEV (Maximal Extractable Value) protection via the --mev-protection flag. When enabled, the broadcast API passes isMEV: true in extraData to route the transaction through MEV-protected channels, preventing front-running, sandwich attacks, and other MEV exploitation.

⚠️ Solana MEV Protection: On Solana, enabling --mev-protection also requires the --jito-unsigned-tx parameter. Without it, the command will fail. This parameter provides the Jito bundle unsigned transaction data needed for Solana MEV-protected routing.

🚨 Never substitute --unsigned-tx for --jito-unsigned-tx — they are completely different parameters. If Jito bundle data is unavailable, stop and ask the user: proceed without MEV protection, or cancel.

Supported Chains

Chain MEV Protection Additional Requirements
Ethereum Yes
BSC Yes
Base Yes
Solana Yes Must also pass --jito-unsigned-tx
Other chains Not supported

When to Enable

  • High-value transfers or swaps where front-running risk is significant
  • DEX swap transactions executed via contract-call
  • When the user explicitly requests MEV protection

Usage

# EVM contract call with MEV protection (Ethereum/BSC/Base)
onchainos wallet contract-call --to 0xDef... --chain 1 --input-data 0x... --mev-protection

# Solana contract call with MEV protection (requires --jito-unsigned-tx)
onchainos wallet contract-call --to <program_id> --chain 501 --unsigned-tx <base58_tx> --mev-protection --jito-unsigned-tx <jito_base58_tx>

Amount Display Rules

  • Token amounts always in UI units (1.5 ETH), never base units (1500000000000000000)
  • USD values with 2 decimal places
  • Large amounts in shorthand ($1.2M, $340K)
  • Sort by USD value descending
  • Always show abbreviated contract address alongside token symbol (format: 0x1234...abcd). For native tokens with empty tokenContractAddress, display (native).
  • Flag suspicious prices: if the token appears to be a wrapped/bridged variant (e.g., symbol like wETH, stETH, wBTC, xOKB) AND the reported price differs >50% from the known base token price, add an inline price unverified flag and suggest running onchainos token price-info to cross-check.

Security Notes

  • TEE signing: Private key never leaves the secure enclave.
  • Transaction simulation: CLI runs pre-execution simulation. If executeResult is false → show executeErrorMsg, do NOT broadcast.
  • Sensitive fields never to expose: accessToken, refreshToken, apiKey, secretKey, passphrase, sessionKey, sessionCert, teeId, encryptedSessionSk, signingKey, raw tx data. Only show: email, accountId, accountName, isNew, addressList, txHash.
  • Recipient address validation: EVM: 0x-prefixed, 42 chars. Solana: Base58, 32-44 chars. Validate before sending.
  • Risk action priority: block > warn > empty (safe). Top-level action = highest priority from riskItemDetail.
  • Approve calls:
  • Do NOT set approve amount to type(uint256).max or 2^256-1 or any equivalent "infinite" value.
  • Do NOT call setApprovalForAll(operator, true) — this grants full control over all tokens of that type.
  • If the user explicitly requests unlimited approval, you MUST:
    1. Warn that this is irreversible and allows the spender to drain all tokens at any time.
    2. Wait for explicit secondary confirmation ("I understand the risk, proceed").
    3. Even after confirmation, cap the approve amount to the actual needed amount (e.g. swap amount + 10% buffer), never unlimited.
  • If the user insists on unlimited after the warning, refuse and suggest they execute manually via a block explorer.

Agent Policy Guidance

Policy configuration must be completed by the user on the Web portal. The Agent only detects the scenario, provides guidance, and gives the jump link.

Available Policy Rules

Policy only includes the following rules. Do NOT invent or mention any rules beyond this list (e.g., no "transaction count limit", no "gas limit", no "token blacklist"):

Rule Description Field (from wallet status)
Per-transaction limit Max USD amount per single transaction or transfer singleTxLimit / singleTxFlag
Daily transfer limit Max USD amount for transfers per day (resets at UTC 0:00) dailyTransferTxLimit / dailyTransferTxFlag / dailyTransferTxUsed
Daily trade limit Max USD amount for trades (swaps) per day (resets at UTC 0:00) dailyTradeTxLimit / dailyTradeTxFlag / dailyTradeTxUsed
Transfer whitelist Only allow transfers to pre-approved addresses Configured on Web portal only

The following three subsections are trigger conditions — when any condition is met, the Agent MUST output the corresponding guidance. Do not skip or omit.

New user login (isNew: true)

Handled in Authentication step 5

New account via wallet add

After a successful wallet add, MUST output the Policy Settings template (see "User-Facing Message Templates"), prefixed with a short line such as "New account created.".

User asks about Policy

e.g., "How do I set a spending limit?", "What's my daily limit?", "How to configure whitelist?"

  • Run onchainos wallet status and check the policy field.
  • If any flag is true, first display the current settings (limits, used amounts).
  • Then output the Policy Settings template (see "User-Facing Message Templates").

Wallet Export Guidance

The Agent must never display any mnemonic phrase or private key content in the conversation. The Agent's role is limited to: recognizing user intent, explaining the risks, and providing the Web portal link.

User asks about wallet export

e.g., "How do I export my mnemonic?", "I want to migrate my wallet", "How do I import my wallet into a hardware wallet?"

When triggered, output the Wallet Export template (see "User-Facing Message Templates").

Edge Cases

Load on error: references/troubleshooting.md

Global Notes

FAQ

For Gas Station FAQ (what is it, how it works, supported tokens/chains, open/close flow): read references/gas-station.md FAQ section.

Q: The agent cannot autonomously sign and execute transactions — it says local signing is required or asks the user to sign manually. How does signing work?

A: OKX Agentic Wallet uses TEE (Trusted Execution Environment) for transaction signing. The private key is generated and stored inside a server-side secure enclave — it never leaves the TEE.

Weekly Installs
2.9K
Repository
okx/onchainos-skills
GitHub Stars
236
First Seen
Today
Security Audits
Gen Agent Trust HubPass
SocketWarn
SnykFail