Adoption

Agent Skills are supported by leading AI development tools.

VS Code Gemini CLI GitHub Goose Amp Cursor Claude Code Letta OpenCode Claude OpenAI Codex Factory VS Code Gemini CLI GitHub Goose Amp Cursor Claude Code Letta OpenCode Claude OpenAI Codex Factory

ticruz38/binance-auth

Name: binance-auth
Author: ticruz38

skills/binance-auth/SKILL.md

npx skillsauth add ticruz38/skills binance-auth

Clean

TrivyContainer and dependency vulnerability scanner

Clean

SemgrepStatic code analysis for vulnerabilities

Clean

mcp-scan (Snyk)Model Context Protocol security validation

Skipped

Snyk (dep)Open source security scanning

Skipped

Socket.devSupply chain security analysis

Skipped

VirusTotalMulti-engine malware detection

Skipped

CrowdStrikeAdvanced threat intelligence

Skipped

OSV-ScannerOpen Source Vulnerability database check

Skipped

OWASP Dep-Check

Binance Auth Skill

Authentication skill for Binance cryptocurrency exchange API. Built on top of auth-provider for secure API key storage and management. Supports both Binance production and testnet environments.

Features

Secure API Key Storage: Encrypted storage of API keys and secrets
Environment Toggle: Switch between production and testnet seamlessly
Permission Validation: Verify API key permissions (spot, margin, futures)
Health Checks: Validate API connectivity and key status
Multi-Profile: Support multiple Binance accounts
Balance Queries: Check account balances as part of health validation

Installation

npm install
npm run build

Environment Variables

No environment variables required - API keys are configured per-profile via CLI.

CLI Usage

View Status

node dist/cli.js status

Connect API Key

# Production environment
node dist/cli.js connect prod \
  --key YOUR_API_KEY \
  --secret YOUR_API_SECRET \
  --env production

# Testnet environment
node dist/cli.js connect test \
  --key YOUR_API_KEY \
  --secret YOUR_API_SECRET \
  --env testnet

Health Check

# Check specific profile
node dist/cli.js health prod

# Check all profiles
node dist/cli.js health

List Profiles

node dist/cli.js list

Get Balance

node dist/cli.js balance prod

Validate Permissions

node dist/cli.js validate prod

Disconnect

node dist/cli.js disconnect prod

JavaScript/TypeScript API

Initialize Client

import { BinanceAuthClient, getBinanceAuth } from '@openclaw/binance-auth';

// Create client for specific profile
const binance = new BinanceAuthClient('prod');

// Or use singleton
const binance = getBinanceAuth('prod');

Connect API Key

const result = await binance.connect({
  apiKey: 'your-api-key',
  apiSecret: 'your-api-secret',
  environment: 'production', // or 'testnet'
});

if (result.success) {
  console.log('Connected! Permissions:', result.permissions);
}

Check Connection

const isConnected = await binance.isConnected();
console.log('Connected:', isConnected);

Get API Credentials

const credentials = await binance.getCredentials();
if (credentials) {
  console.log('API Key:', credentials.apiKey);
  console.log('Environment:', credentials.environment);
}

Health Check

const health = await binance.healthCheck();
console.log('Status:', health.status); // 'healthy' | 'unhealthy'
console.log('Message:', health.message);

Get Account Balance

const balance = await binance.getBalance();
if (balance) {
  console.log('Total BTC:', balance.totalBTC);
  console.log('Balances:', balance.balances);
  console.log('Permissions:', balance.permissions);
}

Validate Permissions

const validation = await binance.validatePermissions();
console.log('Valid:', validation.valid);
console.log('Can Trade:', validation.canTrade);
console.log('Can Withdraw:', validation.canWithdraw);
console.log('Permissions:', validation.permissions);

Disconnect

const disconnected = await binance.disconnect();
console.log('Disconnected:', disconnected);

API Permissions

Binance API keys can have the following permissions:

SPOT - Spot trading
MARGIN - Margin trading
FUTURES - Futures trading
DELIVERY - Coin-margined futures
PERM - Permanent API key
IP_RESTRICTED - IP-restricted access

Environments

Production

API Base: https://api.binance.com
Real trading with real funds
Requires verified Binance account

Testnet

API Base: https://testnet.binance.vision
Paper trading with test funds
Free testnet registration at: https://testnet.binance.vision/

Storage Location

Credentials are stored in the auth-provider database:

~/.openclaw/skills/auth-provider/credentials.db

API keys are encrypted with AES-256.

TypeScript Types

interface BinanceCredentials {
  apiKey: string;
  apiSecret: string;
  environment: 'production' | 'testnet';
  permissions?: string[];
}

interface BinanceConnectionResult {
  success: boolean;
  permissions?: string[];
  canTrade?: boolean;
  canWithdraw?: boolean;
  error?: string;
}

interface BinanceBalance {
  totalBTC: string;
  balances: Array<{
    asset: string;
    free: string;
    locked: string;
  }>;
  permissions: string[];
}

interface BinanceValidationResult {
  valid: boolean;
  permissions: string[];
  canTrade: boolean;
  canWithdraw: boolean;
}

Error Handling

try {
  await binance.connect({ apiKey, apiSecret, environment: 'production' });
} catch (error) {
  if (error.message.includes('Invalid API key')) {
    // API key format is invalid
  } else if (error.message.includes('API key validation failed')) {
    // Key rejected by Binance
  }
}

Security Notes

API secrets are never exposed after storage
All API calls use HMAC-SHA256 signatures
Database file has 0600 permissions (user read/write only)
Use IP restrictions on your Binance API keys for added security
Never commit API credentials to version control

Testing

# Type checking
npm run typecheck

# Build
npm run build

# Run CLI
npm run cli -- status

Dependencies

@openclaw/auth-provider - Secure credential storage
Uses crypto module for HMAC-SHA256 signatures

ticruz38/binance-auth

skills/binance-auth/SKILL.md

Binance API authentication and key management for trading skills. Securely stores API keys, validates permissions, supports testnet vs production environments, and provides health checks with balance queries.

development

Updated Apr 20, 2026

$ install --global

skillsauth

npx skillsauth add ticruz38/skills binance-auth

Install this skill globally with one command. Works with Claude Code, Cursor, and Windsurf.

Security Scan Results

3 of 9 scanners reported clean

Some scanners were skipped, did not run, or reported a non-clean status. Review each row below.

Scanners Passed

Scanners in report

Clean

TrivyContainer and dependency vulnerability scanner

95%

Clean

SemgrepStatic code analysis for vulnerabilities

95%

Clean

mcp-scan (Snyk)Model Context Protocol security validation

95%

Skipped

Snyk (dep)Open source security scanning

50%

Skipped

Socket.devSupply chain security analysis

50%

Skipped

VirusTotalMulti-engine malware detection

50%

Skipped

CrowdStrikeAdvanced threat intelligence

50%

Skipped

OSV-ScannerOpen Source Vulnerability database check

50%

Skipped

OWASP Dep-Check

50%

Last scanned: Apr 20, 2026, 3:04 PM4.7s5 files scanned

SKILL.md

name:: binance-auth
description:: Binance API authentication and key management for trading skills. Securely stores API keys, validates permissions, supports testnet vs production environments, and provides health checks with balance queries.
version:: 1.0.0
author:: OpenClaw
entry:: ./dist/cli.js
type:: script

Binance Auth Skill

Authentication skill for Binance cryptocurrency exchange API. Built on top of auth-provider for secure API key storage and management. Supports both Binance production and testnet environments.

Features

Secure API Key Storage: Encrypted storage of API keys and secrets
Environment Toggle: Switch between production and testnet seamlessly
Permission Validation: Verify API key permissions (spot, margin, futures)
Health Checks: Validate API connectivity and key status
Multi-Profile: Support multiple Binance accounts
Balance Queries: Check account balances as part of health validation

Installation

npm install
npm run build

Environment Variables

No environment variables required - API keys are configured per-profile via CLI.

CLI Usage

View Status

node dist/cli.js status

Connect API Key

# Production environment
node dist/cli.js connect prod \
  --key YOUR_API_KEY \
  --secret YOUR_API_SECRET \
  --env production

# Testnet environment
node dist/cli.js connect test \
  --key YOUR_API_KEY \
  --secret YOUR_API_SECRET \
  --env testnet

Health Check

# Check specific profile
node dist/cli.js health prod

# Check all profiles
node dist/cli.js health

List Profiles

node dist/cli.js list

Get Balance

node dist/cli.js balance prod

Validate Permissions

node dist/cli.js validate prod

Disconnect

node dist/cli.js disconnect prod

JavaScript/TypeScript API

Initialize Client

import { BinanceAuthClient, getBinanceAuth } from '@openclaw/binance-auth';

// Create client for specific profile
const binance = new BinanceAuthClient('prod');

// Or use singleton
const binance = getBinanceAuth('prod');

Connect API Key

const result = await binance.connect({
  apiKey: 'your-api-key',
  apiSecret: 'your-api-secret',
  environment: 'production', // or 'testnet'
});

if (result.success) {
  console.log('Connected! Permissions:', result.permissions);
}

Check Connection

const isConnected = await binance.isConnected();
console.log('Connected:', isConnected);

Get API Credentials

const credentials = await binance.getCredentials();
if (credentials) {
  console.log('API Key:', credentials.apiKey);
  console.log('Environment:', credentials.environment);
}

Health Check

const health = await binance.healthCheck();
console.log('Status:', health.status); // 'healthy' | 'unhealthy'
console.log('Message:', health.message);

Get Account Balance

const balance = await binance.getBalance();
if (balance) {
  console.log('Total BTC:', balance.totalBTC);
  console.log('Balances:', balance.balances);
  console.log('Permissions:', balance.permissions);
}

Validate Permissions

const validation = await binance.validatePermissions();
console.log('Valid:', validation.valid);
console.log('Can Trade:', validation.canTrade);
console.log('Can Withdraw:', validation.canWithdraw);
console.log('Permissions:', validation.permissions);

Disconnect

const disconnected = await binance.disconnect();
console.log('Disconnected:', disconnected);

API Permissions

Binance API keys can have the following permissions:

SPOT - Spot trading
MARGIN - Margin trading
FUTURES - Futures trading
DELIVERY - Coin-margined futures
PERM - Permanent API key
IP_RESTRICTED - IP-restricted access

Environments

Production

API Base: https://api.binance.com
Real trading with real funds
Requires verified Binance account

Testnet

API Base: https://testnet.binance.vision
Paper trading with test funds
Free testnet registration at: https://testnet.binance.vision/

Storage Location

Credentials are stored in the auth-provider database:

~/.openclaw/skills/auth-provider/credentials.db

API keys are encrypted with AES-256.

TypeScript Types

interface BinanceCredentials {
  apiKey: string;
  apiSecret: string;
  environment: 'production' | 'testnet';
  permissions?: string[];
}

interface BinanceConnectionResult {
  success: boolean;
  permissions?: string[];
  canTrade?: boolean;
  canWithdraw?: boolean;
  error?: string;
}

interface BinanceBalance {
  totalBTC: string;
  balances: Array<{
    asset: string;
    free: string;
    locked: string;
  }>;
  permissions: string[];
}

interface BinanceValidationResult {
  valid: boolean;
  permissions: string[];
  canTrade: boolean;
  canWithdraw: boolean;
}

Error Handling

try {
  await binance.connect({ apiKey, apiSecret, environment: 'production' });
} catch (error) {
  if (error.message.includes('Invalid API key')) {
    // API key format is invalid
  } else if (error.message.includes('API key validation failed')) {
    // Key rejected by Binance
  }
}

Security Notes

API secrets are never exposed after storage
All API calls use HMAC-SHA256 signatures
Database file has 0600 permissions (user read/write only)
Use IP restrictions on your Binance API keys for added security
Never commit API credentials to version control

Testing

# Type checking
npm run typecheck

# Build
npm run build

# Run CLI
npm run cli -- status

Dependencies

@openclaw/auth-provider - Secure credential storage
Uses crypto module for HMAC-SHA256 signatures

Related Skills

ticruz38/skills/recipe-suggester

testing

VerifiedTrustedCommunity

Suggest recipes based on dietary preferences, available ingredients, and cuisine preferences

SKILL.mdUpdated Apr 21, 2026

ticruz38/skills/recipe-suggester

ticruz38/skills/receipts-ocr

development

VerifiedTrustedCommunity

Extract data from receipt photos using Google Vision API

SKILL.mdUpdated Apr 21, 2026

ticruz38/skills/receipts-ocr

ticruz38/quickbooks

business

VerifiedTrustedCommunity

QuickBooks Online integration for accounting sync - sync customers, invoices, and transactions with two-way sync and conflict resolution

SKILL.mdUpdated Apr 21, 2026

ticruz38/quickbooks-auth

testing

VerifiedTrustedCommunity

QuickBooks OAuth adapter for QuickBooks Online accounting integration. Built on top of auth-provider for secure token management with automatic refresh, multi-profile support, sandbox/production toggle, and health checks.

SKILL.mdUpdated Apr 21, 2026

ticruz38/quickbooks-auth

Download

For Claude Desktop. Download once, then upload the file in the app — no terminal needed.

Need help? View full Cowork setup guide →

Install manually

Choose your platform

# Clone the repo
git clone https://github.com/ticruz38/skills.git

# Copy into Claude Code skills folder (global)
cp -r skills/skills/binance-auth ~/.claude/skills/

Claude Code Skills — official skills path docs.

Repository

ticruz38/skills

Compatible with

Claude Code

OpenAI Codex CLI

ChatGPT