Alchemy

Dev Tools by @alchemyplatform v1.0.0 7 flags

Official Alchemy skill. Two auth modes: API key or x402 Agentic Gateway (no key needed). Complete coverage for ~100 chains: Token API, NFT API, Transfers, Prices, Portfolio, Simulation, Webhooks, Solana, and JSON-RPC. 82 reference docs + x402 gateway rules.

Install

$ cp -r cryptoskill/skills/dev-tools/alchemy-official-skill .claude/skills/
$ clawhub install alchemy-official-skill

Tags

alchemy blockchain infrastructure multi-chain tokens nfts prices transfers portfolio webhooks solana evm x402 agentic-gateway siwe official

Trust profile trust grade not computed yet

7 red flags 3 cleared 1 not measured

Capabilities below are detected automatically by an open-source scanner that reads the skill's text and scripts (see how this is computed). Not measured means the scanner couldn't make a confident call — it is NOT a green check, and you should treat it as a possible red flag until a human or a stronger scanner has measured it.

7 Red flags things this skill can do that affect your security or funds
  • Can move funds this skill can sign and send transactions on your behalf
  • Requires private key you must hand over a private key, mnemonic, or wallet config
  • Requires hosted operator depends on a third-party hosted service to function
  • Mutable remote runtime runs remote code that can change behavior without a local diff
  • Can install code installs software at setup time (npx, pip, brew, etc.)
  • Can execute shell runs arbitrary shell commands on your machine
  • Can browse the web fetches arbitrary URLs at runtime
3 Cleared by scanner we scanned the skill's text & scripts and found no evidence of these
  • Uses remote install script setup pipes a remote shell script (curl | sh class)
  • Can write files writes to your local filesystem
  • Can spawn sub-agents delegates to other skills or sub-agents
1 Not measured yet scanner couldn't make a confident call — treat as a possible red flag
  • ?
    Auto-invocable may be invoked by the agent without your explicit prompt

Execution mode

local_executor Phase 1 single-mode classification — multi-mode breakdown deferred to Phase 2.

Ingredients (services this skill talks to)

External services this skill needs in order to work. The skill's behavior depends on these services being up, honest, and unchanged. Today we only show services we recognize from a curated list of ~50 well-known hosts (exchanges, RPC providers, data APIs); a complete dependency list — including every package, library, and binary the skill installs or imports — is on the roadmap.

Audits

No one has audited this skill yet. That is different from “audited and clean” — it just means no professional reviewer (a security firm, the CryptoSkill team, or a verified independent researcher) has signed off on it. There are no audit reports to read. How reviewer levels work →

SKILL.md → SOURCE.md → TRUST.auto.yaml → Browse directory →

Auto-generated by cryptoskill/extract-capabilities/0.3.0 · hosted-service list version 2026-04-26 · how this is computed

Other in Dev Tools

AlchemyAlchemy OpenAPI SkillAlchemy Web3ArcaArcaArca - A3Stack SDK

Source

View on GitHub →