DeepBook CLI. Watch, Make & Take the Sui Market
Security checks across malware telemetry and agentic risk
Overview
This is a coherent DeepBook trading CLI skill, but it handles private keys and can execute irreversible on-chain trades, swaps, margin actions, deposits, and withdrawals through an unreviewed global CLI.
Install only if you trust the deepbook-cli npm package and intend to let an agent assist with financial trading. Use testnet or low-value accounts first, require explicit approval for every transaction, prefer dry-runs, avoid command-line private-key arguments, and regularly inspect or clean ~/.deepbook.
VirusTotal
64/64 vendors flagged this skill as clean.
Risk analysis
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
A mistaken or over-broad agent action could place trades, move collateral, close positions, or withdraw funds on the user's behalf.
The skill exposes raw CLI paths for high-impact trading, margin, deposit, close-position, and withdrawal operations; the documented control is a preference for dry-run, not a required approval or confirmation step.
`deepbook spot buy`; `deepbook spot sell`; `deepbook swap base-for-quote`; `deepbook margin deposit`; `deepbook margin market`; `deepbook margin close`; `deepbook manager withdraw`; "Prefer `--dry-run` first for all state-changing commands."
Require explicit user approval for every state-changing command, review dry-run output first, and verify pool, side, amount, manager, network, and recipient before execution.
Anyone or any process with access to the configured key material may be able to sign transactions and spend or move assets from the account.
The skill directs use of private signing keys and persistent account configuration, granting account-level authority; the registry metadata nevertheless lists no primary credential or required config path.
`--private-key <suiprivkey>`; `deepbook config import-key [privateKey]`; `deepbook account import <alias> [privateKey]`; `Ensure ~/.deepbook/config.json exists`
Use a limited test account or hardware/approval-based signing where possible, prefer stdin over command-line key arguments, avoid storing high-value private keys, and inspect permissions on ~/.deepbook.
The installed npm package, not this SKILL.md alone, will handle sensitive trading and key operations.
A global npm CLI install is purpose-aligned for this skill, but the package is unpinned in the instructions and the registry lists the source as unknown with no homepage or reviewed code files.
If not, install it: `npm install -g deepbook-cli`
Verify the npm package name, publisher, version, repository, and integrity before installing; consider pinning a trusted version.
Future commands may silently use an old account, network, API key, provider endpoint, or RPC URL.
The skill relies on persistent global configuration that can store endpoints and API keys and be reused across future tasks, so stale or incorrect settings may influence later operations.
`Configure global defaults in ~/.deepbook (works from any path)`; `set-rpc-url`; `set-provider-base-url`; `set-read-key`; `set-stream-key`
Review ~/.deepbook before and after use, separate mainnet and testnet accounts, remove stale credentials, and confirm the active account and network before trading.