tokenbroker
This skill orchestrates GitHub project analysis, generates token metadata, and delegates on-chain launches to nadfun. It instructs CLI/network actions (e.g., npx clawhub install tokenbroker, curl -H "Authorization: token $GITHUB_TOKEN" https://api.github.com/user), and uses env vars like GITHUB_TOKEN and PRIVATE_KEY.
SKILL.md - TokenBroker Skillset
The meta-skill for AI agent token orchestration. Analyze GitHub projects, generate metadata, and delegate token launches to specialized skills.
What is TokenBroker?
TokenBroker is a meta-skill that orchestrates the end-to-end token launch workflow for AI agents. Instead of handling all operations directly, TokenBroker:
- Analyzes GitHub projects to identify launch opportunities
- Generates compelling token metadata (names, symbols, descriptions)
- Delegates actual on-chain operations to the
nadfunskill - Promotes launches with coordinated marketing campaigns
TokenBroker coordinates; nadfun and monad-development execute.
When to Use This Skill
TokenBroker Handles Locally
- GitHub repository monitoring and analysis
- Project metadata extraction
- Token naming and description generation
- Marketing content creation
- Builder reputation tracking
- Post-launch promotion
Delegate to nadfun Skill
- Image upload to IPFS
- Metadata upload to IPFS
- Salt mining for vanity addresses
- On-chain token creation
- Trading operations (buy/sell)
- Bonding curve interactions
Delegate to monad-development Skill
- Smart contract verification
- Contract ABIs and interfaces
- On-chain data queries (beyond nad.fun)
- Wallet management for deployment
Core Concept
- Track: Agent monitors GitHub repos for significant activity (commits, releases, tags).
- Analyze: TokenBroker extracts project context and generates metadata proposals.
- Delegate: When ready to launch, invoke
nadfunskill for on-chain execution. - Promote: Generate marketing content and coordinate post-launch activities.
Module Structure (tokenbroker/)
SKILL.md: Root configuration and integration guide.GITHUB.md: Repository monitoring and launch trigger detection.METADATA.md: Token identity generation and proposal.PROJECT-SCAN.md: Codebase analysis for context extraction.PROMO.md: Marketing content generation for launches.STATS.md: Builder reputation and trust metrics.SETUP.md: Installation and configuration guide.
Skill Dependencies
TokenBroker orchestrates but relies on these skills for on-chain execution:
| Skill | Purpose |
|---|---|
nadfun | Token creation, image/metadata upload, salt mining, bonding curve interactions |
monad-development | Contract verification, ABIs, wallet management |
Quick Start for Agents
- Read
GITHUB.mdto begin monitoring repositories. - Use
PROJECT-SCAN.mdto extract project context. - Follow
METADATA.mdto propose token details. - Delegate to nadfun for actual token creation.
- Use
PROMO.mdfor post-launch marketing.
Install Wizard Flow
npx clawhub install tokenbroker
The Install Wizard guides you through:
Step 1: Project Validation
- Scan current directory for project structure
- Validate essential files and dependencies
- No GitHub connection required yet
Step 2: User Profile Setup
- Auto-configure builder profile via A2A communication
- Set up reputation tracking preferences
- Connect to existing nad.fun identity
Step 3: GitHub OAuth Integration
- OAuth 2.0 flow for repository monitoring
- Device code fallback for CLI environments
- Personal Access Token (PAT) support
Step 4: Environment Configuration
- Generate
.envwith required secrets - Configure network settings (testnet/mainnet)
- Set up nad.fun API credentials
Configuration
# Network Settings
NETWORK=testnet # or mainnet
# GitHub Integration
GITHUB_TOKEN=ghp_...
# Builder Profile (auto-configured via A2A)
BUILDER_ID=...
REPUTATION_SCORE=...
Network References
| Network | RPC | Chain ID | API |
|---|---|---|---|
| Testnet | https://testnet-rpc.monad.xyz | 10143 | https://dev-api.nad.fun |
| Mainnet | https://rpc.monad.xyz | 143 | https://api.nadapp.net |
Security Best Practices
TokenBroker is a meta-skill that orchestrates operations but does not directly handle, store, or manage sensitive credentials.
Credential Handling Architecture
- Orchestration Only: TokenBroker coordinates workflows between skills but never directly accesses private keys, wallet credentials, or API secrets
- Runtime Injection: All sensitive credentials are injected by the host environment at runtime via environment variables
- No Persistence: The skill never logs, exfiltrates, or persists sensitive data to disk, storage systems, or third-party services
- Delegated Security: Sensitive operations (wallet management, token creation, trading) are delegated to dependency skills (
nadfun,monad-development) which implement their own security protocols
Environment Variable Placeholders
When documenting configuration, use placeholder notation:
# GitHub credentials - provided by host environment
GITHUB_TOKEN=${GITHUB_TOKEN}
# Wallet private key - never handled by TokenBroker
PRIVATE_KEY=${PRIVATE_KEY}
# Builder identity - injected via A2A profile setup
BUILDER_ID=${BUILDER_ID}
Credential Boundaries
| Credential Type | Handled By | TokenBroker Role |
|---|---|---|
| GitHub PAT/OAuth | GitHub API directly | Requests token, doesn't store |
| Wallet Private Key | monad-development skill | Orchestrates operations only |
| Nad.fun API Key | nadfun skill | Delegates credential handling |
| Builder Profile | A2A communication | Receives profile data only |
Security Disclaimer
Important: TokenBroker is designed with a security-first architecture. It explicitly avoids:
- Direct storage or management of private keys
- Writing credentials to configuration files
- Logging sensitive values in any form
- Transmitting credentials to third-party endpoints
All credential handling is the responsibility of the host environment and dependency skills with their own security certifications.
Built for the agentic future. 🦞