Three steps to give your OpenClaw agent access to ClawCard:

1. Create an API key in the API Keys page
2. Save the skill file below to your skills directory
3. Add your API key to your OpenClaw config

---
name: clawcard
description: Email, SMS, virtual cards, and credential vault for autonomous agents
metadata: {"openclaw":{"primaryEnv":"CLAWCARD_API_KEY","emoji":"\ud83d\udd11"}}
---

You have access to ClawCard — a platform that gives you a real email address, phone number, virtual debit cards, and an encrypted credential vault.

**Authentication:** All requests use your API key as a Bearer token.

## Getting Started

Base URL: $CLAWCARD_BASE_URL (default: https://clawcard.sh)
Auth header: Authorization: Bearer $CLAWCARD_API_KEY

**Step 1: Discover your identity.** Call GET /api/me first — it returns your keyId, email, phone, and budget. Use the keyId for all other endpoints.

curl -H "Authorization: Bearer $CLAWCARD_API_KEY" $CLAWCARD_BASE_URL/api/me

Response: { "keyId": "agt_...", "name": "...", "email": "...", "phone": "...", "spendLimitCents": ... }

## Endpoints

Use the keyId from /api/me as KEY_ID in all endpoints below.

### Identity

**Get full identity details:**

curl -H "Authorization: Bearer $CLAWCARD_API_KEY" $CLAWCARD_BASE_URL/api/agents/KEY_ID

### Email

**Read inbox:**

curl -H "Authorization: Bearer $CLAWCARD_API_KEY" "$CLAWCARD_BASE_URL/api/agents/KEY_ID/emails?limit=20"

**Send email:**

curl -X POST -H "Authorization: Bearer $CLAWCARD_API_KEY" -H "Content-Type: application/json" \
  -d '{"to":"recipient@example.com","subject":"Hello","body":"Message text"}' \
  $CLAWCARD_BASE_URL/api/agents/KEY_ID/emails/send

### SMS (inbound only)

Each key gets a dedicated phone number for receiving SMS (e.g. verification codes). Outbound SMS is not currently supported.

**Read received messages:**

curl -H "Authorization: Bearer $CLAWCARD_API_KEY" "$CLAWCARD_BASE_URL/api/agents/KEY_ID/sms?limit=20"

### Virtual Cards

**List cards:**

curl -H "Authorization: Bearer $CLAWCARD_API_KEY" $CLAWCARD_BASE_URL/api/agents/KEY_ID/cards

**Create a card (returns PAN, CVV, expiry):**

curl -X POST -H "Authorization: Bearer $CLAWCARD_API_KEY" -H "Content-Type: application/json" \
  -d '{"amountCents":1000,"memo":"Hosting payment","type":"single_use"}' \
  $CLAWCARD_BASE_URL/api/agents/KEY_ID/cards

Card types:
- single_use — card closes automatically after one successful transaction. Best for one-time purchases.
- merchant_locked — card locks to the first merchant that charges it. Best for subscriptions or repeated payments to the same service (e.g. hosting, SaaS).

**Get card details (PAN, CVV):**

curl -H "Authorization: Bearer $CLAWCARD_API_KEY" $CLAWCARD_BASE_URL/api/agents/KEY_ID/cards/CARD_ID

**Close a card:**

curl -X PATCH -H "Authorization: Bearer $CLAWCARD_API_KEY" -H "Content-Type: application/json" \
  -d '{"action":"close"}' \
  $CLAWCARD_BASE_URL/api/agents/KEY_ID/cards/CARD_ID

### Credentials Vault

**Store a credential:**

curl -X POST -H "Authorization: Bearer $CLAWCARD_API_KEY" -H "Content-Type: application/json" \
  -d '{"service":"aws","key":"access_key","value":"AKIA..."}' \
  $CLAWCARD_BASE_URL/api/agents/KEY_ID/credentials

**Retrieve a credential:**

curl -H "Authorization: Bearer $CLAWCARD_API_KEY" $CLAWCARD_BASE_URL/api/agents/KEY_ID/credentials/SERVICE/KEY

### Budget

**Check remaining budget:**

curl -H "Authorization: Bearer $CLAWCARD_API_KEY" $CLAWCARD_BASE_URL/api/agents/KEY_ID/budget

**Allocate budget (moves funds from account balance to this key):**

curl -X POST -H "Authorization: Bearer $CLAWCARD_API_KEY" -H "Content-Type: application/json" \
  -d '{"amountCents":1000}' \
  $CLAWCARD_BASE_URL/api/agents/KEY_ID/budget

{
  "skills": {
    "entries": {
      "clawcard": {
        "env": {
          "CLAWCARD_API_KEY": "YOUR_API_KEY_HERE",
          "CLAWCARD_BASE_URL": "https://clawcard.sh"
        }
      }
    }
  }
}

3. Refresh skills

Tell your OpenClaw agent to "refresh skills" or restart the gateway. The clawcard skill will appear in the skill list.