WachAI-x402

ReviewAudited by ClawScan on May 10, 2026.

Overview

The token-risk purpose is coherent, but the skill relies on an authenticated funded AWAL wallet and an external x402-wach payment CLI that are not reviewable or declared in the registry artifacts.

Review this carefully before installing. If you use it, verify the x402-wach package source, use a dedicated low-balance AWAL wallet, keep the 0.01 USDC cap, never provide seed phrases or private keys, and require confirmation before each paid analysis.

Findings (3)

Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.

Medium

#ASI03: Identity and Privilege Abuse

What this means

The agent could use the user's AWAL wallet to pay for token analyses, and wallet login/status/balance flows may expose account-related information in tool output.

Why it was flagged

The skill expects an authenticated, funded crypto wallet and automatic USDC payments, while the registry declares no primary credential or capability requirements.

Skill content

compatibility: Requires Node.js 18+, npm, network access, AWAL installed and authenticated, and a funded AWAL wallet with USDC on Base.
...
payment: 0.01 USDC on Base (automatic via x402)

Recommendation

Use a dedicated low-balance wallet, keep the 0.01 USDC cap, and require clear user confirmation before any paid call or cap increase.

Medium

#ASI04: Agentic Supply Chain Vulnerabilities

What this means

Users cannot verify from these artifacts which binary or package implementation will authenticate to AWAL or initiate x402 payments.

Why it was flagged

The skill directs use of an external CLI/npm package, but the supplied artifacts include no code or install spec to verify what will run; this is material because that tool handles wallet payments.

Skill content

Run:

```bash
x402-wach wallet setup
```
...
import {
  getAwalReadiness,
  validateTokenAddress,
  verifyTokenRisk,
} from "@quillai-network/x402-wach";

Recommendation

Install only from a verified official source, pin the package/version where possible, and inspect the CLI before allowing it to access a funded wallet.

Low

#ASI02: Tool Misuse and Exploitation

What this means

A token check can trigger a network call and a small wallet payment.

Why it was flagged

The skill exposes a paid external command. This is purpose-aligned and capped, but users should notice that invoking the analysis command can spend USDC.

Skill content

Preferred cap-safe form:

```bash
x402-wach verify-risk <TOKEN_ADDRESS> <CHAIN_SHORT_NAME> --max-amount-atomic 10000
```

Recommendation

Confirm the token and chain before running analysis, keep the default cap, and avoid broad or repeated automated requests.