Strategy Translator
PassAudited by VirusTotal on May 11, 2026.
Overview
Type: OpenClaw Skill Name: strategy-translator Version: 0.1.0 The skill bundle contains only documentation and metadata, with no executable code or scripts. The SKILL.md instructions for the AI agent are clear, task-oriented, and entirely aligned with the stated purpose of translating trading strategies, without any evidence of prompt injection attempts to deviate from the task, hide actions, or access unrelated sensitive data. While the `allowed-tools: Read, Write, Edit` permission set is broad, it is consistent with the skill's stated goal of producing 'repo-ready deliverables (code + docs)' and creating 'implementation sketch (files to create/change)'. There is no indication of malicious intent, data exfiltration, or unauthorized execution.
Findings (0)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
The agent may create or change project files while translating a strategy.
The skill can read and modify repository files, which is expected for translating and producing strategy code but still gives the agent file-mutation authority.
allowed-tools: Read, Write, Edit ... Produce repo-ready deliverables (code + docs) and a run command.
Review proposed file changes before committing or running generated strategy code, especially if it affects live trading or backtesting assumptions.
Users have limited upstream source context for confirming where the skill came from.
The package is instruction-only, so this is not an executable-code concern, but the upstream provenance is incomplete.
Status: canonical skill package requested from MCPMarket links; some upstream links currently resolve to missing GitHub paths.
If provenance is important, verify the MCPMarket listing or upstream repository before relying on the skill.