Goodwallet
Crypto wallet CLI. Run goodwallet --help for the latest commands, flags, chains, and usage.
Update
Before running any other command, check for updates:
- 1.
goodwallet update — check for a new version. - If outdated, run
goodwallet update --install before proceeding.
Rules
- - Summarize outcomes in plain language; don't dump raw CLI output unless asked.
- Never fabricate values. Only report what the CLI returns.
- Read before write: inspect balances/quotes/positions before proposing any state-changing action.
- Confirm before executing any command that moves funds or creates exposure:
send, swap --execute, trade --deposit/--withdraw/--market, bet --deposit/--withdraw/--market, earn --deposit/--withdraw, and every sign command. - Don't reveal internal wallet details unless the user asks.
Auth
- 1.
goodwallet auth — show the returned URL to the user. - INLINECODE10� — run immediately; polls until the browser flow completes.
- INLINECODE11� — disconnect.
Signing Safety
All credentials and MPC key shares are stored locally at ~/.config/goodwallet/. No full private key ever exists — only a single MPC key share is stored on device. Signing uses 2-party MPC with a remote co-signer at sign.goodwallet.dev (operated by GoodDollar). The agent API at agent.goodwallet.dev issues signing room UUIDs and enforces transaction-policy checks (token allowlists, spend limits, malicious-contract detection) before co-signing, so most harmful payloads are rejected server-side. Both services communicate over HTTPS/WSS. Still, confirm with the user before running any sign command so they understand what they're approving.
Error Recovery
- - Auth timeout → restart
auth + auth --pair. - Insufficient funds → suggest checking balances or reducing amount.
- No swap route → suggest different token, amount, or chain.
- Any other failure → report the error plainly, don't retry automatically.
Goodwallet
加密货币钱包命令行工具。运行 goodwallet --help 可查看最新命令、标志、链及用法。
更新
在运行任何其他命令前,请先检查更新:
- 1. goodwallet update — 检查新版本。
- 如果版本过旧,请先运行 goodwallet update --install 后再继续。
规则
- - 用通俗语言总结结果;除非被要求,否则不要直接输出原始命令行结果。
- 绝不捏造数值。仅报告命令行返回的内容。
- 先读后写:在提出任何改变状态的操作前,先检查余额/报价/持仓。
- 执行前确认:任何涉及资金转移或产生风险敞口的命令:send、swap --execute、trade --deposit/--withdraw/--market、bet --deposit/--withdraw/--market、earn --deposit/--withdraw,以及所有 sign 命令。
- 除非用户询问,否则不透露内部钱包详情。
认证
- 1. goodwallet auth — 向用户显示返回的 URL。
- goodwallet auth --pair — 立即运行;轮询直至浏览器流程完成。
- goodwallet auth --logout — 断开连接。
签名安全
所有凭证和 MPC 密钥分片均本地存储在 ~/.config/goodwallet/ 目录下。设备上从未存储完整私钥——仅存储单个 MPC 密钥分片。签名使用与远程共同签名者(位于 sign.goodwallet.dev,由 GoodDollar 运营)进行的双人 MPC 协议。位于 agent.goodwallet.dev 的代理 API 负责发放签名房间 UUID,并在共同签名前执行交易策略检查(代币白名单、支出限额、恶意合约检测),因此大多数有害负载会在服务端被拒绝。两项服务均通过 HTTPS/WSS 通信。尽管如此,在执行任何 sign 命令前仍需向用户确认,以便他们了解正在批准的内容。
错误恢复
- - 认证超时 → 重新启动 auth + auth --pair。
- 资金不足 → 建议检查余额或减少金额。
- 无兑换路径 → 建议使用不同的代币、金额或链。
- 任何其他失败 → 直接报告错误,不要自动重试。
