A portable, agent-agnostic prompt that walks any AI coding agent through wiring AllScale Checkout into your app — credentials, signing, polling, webhooks. One Markdown file. No SDK.
You don't install anything globally. The skill is a single Markdown file your agent fetches and follows — verifying credentials, writing code for your stack, testing connectivity, debugging.
Drop one line into Claude Code, Cursor, Codex, or any agent. It fetches the guide and starts working in your repo.
It asks for your stack, writes signing code, verifies connectivity against the three test endpoints, and shows the canonical-string format if anything breaks.
Server creates the intent, returns a hosted checkout_url, polls for status, verifies the webhook. Done.
From key handling to webhook verification. The agent reads your stack and writes the right code for it — Next.js, Flask, Rails, Express, vanilla.
Canonical strings joined by \n, body hashed from raw bytes (not re-serialized), Base64-encoded. The agent writes the utility for your language and reads the secret from env.
// canonical = METHOD \n PATH \n QUERY \n TS \n NONCE \n BODY_SHA256 const sig = hmacSHA256(secret, canonical).toBase64(); headers["X-Signature"] = `v1=${sig}`;
Catches signature bugs early. If a 20002 shows up, the agent walks the debug checklist.
The webhook canonical string starts with allscale:webhook:v1 — a common source of confusion. Skill enforces a 5-minute timestamp window, nonce replay protection, and timing-safe comparison.
// webhook canonical, line-by-line "allscale:webhook:v1" METHOD · PATH · QUERY · WEBHOOK_ID TIMESTAMP · NONCE · BODY_SHA256
Send 1, not "USD".
Next.js, Flask, Rails, Express, mobile, vanilla — the skill asks once and adapts every snippet to match.
Each tool has its own way of consuming a prompt. The simplest path works everywhere; specific tools get a more native install.
Paste this into your agent's chat. The agent fetches the file and starts the integration. Recommended for Aider, Continue, Cline, or anything else that can read a URL.
> Read and follow the instructions at allscale.io/skill
Save the skill into .claude/commands/ so you can re-invoke it any time with /integrate-allscale.
> Read allscale.io/skill and save it to .claude/commands/integrate-allscale.md # then, any time: > /integrate-allscale
Download the guide into your repo so Codex picks it up alongside your AGENTS.md.
$ curl -L -o integrate-allscale.md https://allscale.io/skill # in AGENTS.md: When the user wants to integrate AllScale Checkout, read and follow ./integrate-allscale.md.
Drop the guide into .cursor/rules/ and reference it in chat with @integrate-allscale.
$ mkdir -p .cursor/rules $ curl -L -o .cursor/rules/integrate-allscale.mdc https://allscale.io/skill # in chat: > @integrate-allscale
Pull the file down with curl, then open it in any agent and tell it to follow the instructions.
$ curl -L -O https://allscale.io/skill
The skill carries critical safety rules the agent must follow before writing a single credential to disk. It's spelled out in plain language at the top of the file.
Hardcoded into the skill — every agent that follows it works under the same rules.
.env file — never any other file type. .gitignore first and adds .env if missing. The whole guide is a single Markdown file at allscale.io/skill. Free, MIT-licensed, no SDK to install.