Skillv0.1.0

ClawScan security

Send USD Skill · ClawHub's context-aware review of the artifact, metadata, and declared behavior.

SuspiciousFeb 11, 2026, 9:04 AM

Verdict: suspicious
Confidence: medium
Model: gpt-5-mini
Summary: The skill's code and instructions only simulate a USD transfer but claim to 'send USD' without requesting or using any payment credentials or provider integration — this mismatch could mislead users or other agents into believing real money was moved.
Guidance: This skill currently only simulates transfers locally (it generates a transaction_id and returns success) and does not actually move money. If you intended to use it for real payments, require the author to: (1) explain which payment provider it integrates with; (2) add explicit, minimal environment variables for provider credentials and show how they're used securely; (3) remove any simulation code and show audited network calls to the provider's official API endpoints; and (4) document rate limits, error handling, and audit logging. Do not rely on this skill for financial operations until you verify provider integration and secure credential handling; enabling it for autonomous agents could let other agents record 'successful' transfers that never occurred, causing financial or audit confusion.

Purpose & Capability: concernThe name/description promise an actual USD transfer, but the skill requires no credentials, no provider config, and the code contains a TODO comment stating integration with a payment provider is required. As delivered it only simulates transfers; a real payment capability would need API keys, account IDs, or gateway integration.
Instruction Scope: noteSKILL.md restricts inputs/outputs to transfer parameters and mentions authentication & auditing, but provides no authentication mechanism or instructions for configuring a payment provider. The runtime instructions do not reference reading credentials or contacting an external payment API—so behavior is limited to local simulation.
Install Mechanism: okNo install spec and no external downloads; this is instruction+code only and does not write files or fetch remote artifacts during install, which is low risk.
Credentials: concernThe skill requests no environment variables or credentials despite claiming to perform money transfers. Real transfers normally require secrets (API keys, service tokens, account credentials). The absence of these is disproportionate to the stated purpose and misleading.
Persistence & Privilege: okThe skill is not always-enabled, does not request elevated persistence, and does not modify other skills or system-wide agent settings.