ClawHub
Back to skill
v1.0.3

Gotchi Equip

BenignClawScan verdict for this skill. Analyzed May 1, 2026, 5:49 AM.

Analysis

The skill is coherent and does what it says, but it can submit Bankr transactions that change Aavegotchi wearable state and uses a Bankr API key.

GuidanceBefore installing, make sure you are comfortable giving this skill access to a Bankr API key and using it to submit Aavegotchi wearable transactions. Review gotchi IDs and wearable slot values carefully, especially before using unequip-all.

Findings (4)

Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.

Abnormal behavior control

Checks for instructions or behavior that redirect the agent, misuse tools, execute unexpected code, cascade across systems, exploit user trust, or continue outside the intended task.

Tool Misuse and Exploitation
SeverityMediumConfidenceHighStatusNote
scripts/equip.sh
echo "Submitting transaction via Bankr..."
RESPONSE="$(curl -sS -X POST "https://api.bankr.bot/agent/submit" ... -d @"$TEMP_TX")"

The equip flow submits a prepared transaction to Bankr, which is expected for this skill but can change on-chain Aavegotchi wearable state once run.

User impactRunning the equip command can submit a real Base transaction that changes the wearable loadout for the selected gotchi.
RecommendationOnly run equip commands with gotchi IDs and slot values you intend to change, and rely on Bankr/account-side limits or confirmations where available.
Tool Misuse and Exploitation
SeverityMediumConfidenceHighStatusNote
scripts/unequip-all.sh
echo "Action: Unequip all wearables" ... RESPONSE="$(curl -sS -X POST "https://api.bankr.bot/agent/submit" ... -d @"$TEMP_TX")"

The unequip-all script is clearly named and documented, but it submits a transaction that sets all wearable slots to zero.

User impactRunning the unequip-all command can remove all equipped wearables from the selected gotchi, potentially requiring another transaction to restore the loadout.
RecommendationUse the unequip-all script only when you explicitly want a full unequip, and review the gotchi ID before running it.
Agentic Supply Chain Vulnerabilities
SeverityLowConfidenceHighStatusNote
README.md
npm install

The skill requires installing npm dependencies before use; this is expected because the code uses viem to encode transaction calldata, and a package-lock file is included.

User impactInstalling dependencies adds normal npm supply-chain exposure, although the dependency set is small and lockfile-backed.
RecommendationInstall from a trusted copy of the skill and keep the included package-lock.json when installing dependencies.
Permission boundary

Checks whether tool use, credentials, dependencies, identity, account access, or inter-agent boundaries are broader than the stated purpose.

Identity and Privilege Abuse
SeverityMediumConfidenceHighStatusNote
scripts/common.sh
key="${BANKR_API_KEY:-}" ... systemctl --user show-environment ... "$HOME/.openclaw/skills/bankr/config.json" ... "$HOME/.openclaw/workspace/skills/bankr/config.json"

The skill retrieves a Bankr API key from documented environment and OpenClaw Bankr config locations so it can submit transactions.

User impactThe skill can use your Bankr account authority to submit the scoped Aavegotchi transaction payloads it builds.
RecommendationUse a Bankr key with appropriate limits if possible, and keep the key in trusted locations only.