Back to skill
Skillv0.1.0
ClawScan security
Ethereum Node · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignFeb 16, 2026, 5:24 AM
- Verdict
- benign
- Confidence
- high
- Model
- gpt-5-mini
- Summary
- The skill's requirements and runtime instructions align with its stated purpose of managing Ethereum execution clients; nothing requested is disproportionate or unrelated.
- Guidance
- This skill is coherent with Ethereum node administration, but take standard precautions: install geth/reth only from trusted sources and verify the GitHub repo; do not bind RPC (admin/debug) to public interfaces or expose ports without a firewall; protect your engine JWT secret and never paste it into untrusted places; be cautious if you allow an agent to execute commands autonomously — node-admin commands (adding peers, enabling admin/debug) are powerful and can change node behavior. The skill itself does not request credentials or contain code files; it only provides shell/API instructions that will run if your agent is permitted to execute them.
Review Dimensions
- Purpose & Capability
- okName/description match the declared requirements (reth/geth/curl) and the instructions focus on starting/stopping, RPC calls, peers, logs and diagnostics. No unrelated credentials, binaries, or config paths are requested.
- Instruction Scope
- noteInstructions are limited to local node management (launch commands, JSON-RPC curl calls, log inspection, system diagnostics). The guidance includes use of powerful admin/debug RPC namespaces and shows how to add peers — this is expected for node ops but also sensitive; the SKILL.md warns not to expose admin over the network.
- Install Mechanism
- okThis is an instruction-only skill (no install spec). SKILL.md provides manual install commands (brew, cargo) from typical sources (Homebrew and a GitHub repo). Nothing is auto-downloaded or extracted by the skill itself.
- Credentials
- okThe skill declares no required environment variables or credentials. It references local JWT files and local paths as configuration examples but does not request secrets or unrelated credentials.
- Persistence & Privilege
- okalways:false and user-invocable; the skill does not request persistent installation or modify other skills. Note: autonomous invocation is allowed by default on the platform — that is normal but you should be aware an agent with shell execution enabled could run the provided commands.