Back to skill
Skillv1.0.1
ClawScan security
Defi Trading Engine · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignMar 13, 2026, 4:40 PM
- Verdict
- benign
- Confidence
- high
- Model
- gpt-5-mini
- Summary
- The skill's code, runtime instructions, and external requirements are coherent with a DeFi trading bot: it scans market APIs, runs a local risk gate, and calls a CLI (Bankr) to execute trades — it does not ask for unrelated credentials or hidden endpoints.
- Guidance
- This skill appears internally consistent with an automated DeFi trading bot, but it can execute real trades via the Bankr CLI. Before installing or running: - Review and vet the Bankr CLI (npm package and https://bankr.bot). Only install trusted CLIs and understand where they store keys (~/.bankr/config.json). - Start in dry-run / paper-trade mode (configs default to dry_run=true) and test with small amounts or no funds. - Inspect the included scripts (you already have them) for unexpected network endpoints — they call CoinGecko and use the local Bankr CLI only. - Keep private keys / API keys offline or limited; consider a separate wallet with minimal funds for testing. - If you want higher assurance, run the scripts in an isolated environment/container and review the Bankr CLI's source or reputation before granting it access to funds.
Review Dimensions
- Purpose & Capability
- okName/description match the included scripts and behavior: token scanner, risk manager, trade executor, and review loop. Required capabilities (calling CoinGecko, reading/writing local trade logs, calling a DEX CLI) are consistent with an automated trading engine. No unrelated credentials or binaries are requested.
- Instruction Scope
- okSKILL.md instructs copying the provided scripts, creating a local config, installing/using the Bankr CLI, and running the scanner/risk checks/review. The instructions reference only local files (trading-config.json, trades/, reviews/) and expected external APIs (CoinGecko). There are no instructions to read arbitrary system files or exfiltrate data.
- Install Mechanism
- okThis is an instruction-only skill with included Python scripts (no install spec). The skill expects the user to install the Bankr CLI separately (npm install -g @bankr/cli) per the README. That external install step is normal for a CLI-driven trading workflow and is not performed by the skill itself.
- Credentials
- noteThe skill does not declare or require environment variables. It relies on the Bankr CLI for authentication (references ~/.bankr/config.json and bankr login). This is proportionate for a CLI-based trading bot, but it means the bot will operate using whatever wallet/API keys the Bankr CLI holds — review and restrict those credentials before enabling live trades.
- Persistence & Privilege
- okThe skill does not request always:true and is user-invocable. It does not attempt to modify other skills or system-wide settings. It writes/read local logs and config files within the workspace (trades/, reviews/, trading-config.json), which is expected for this use case.