Back to skill
Skillv0.1.0
ClawScan security
Meme Rush · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignMar 7, 2026, 3:20 AM
- Verdict
- benign
- Confidence
- medium
- Model
- gpt-5-mini
- Summary
- The skill's declared purpose (fast-trading / launchpad token listing) aligns with the API endpoints and filters documented in SKILL.md; it requests no credentials, installs nothing, and contains no instructions that clearly exceed its stated scope — but metadata claims (author/homepage) are incomplete and the skill source is unknown, so verify provenance before use.
- Guidance
- This skill is internally consistent with its stated purpose and does not request credentials or install software, but you should: 1) verify the skill's provenance (author claim 'binance-web3-team' vs unknown source/homepage) before relying on it for trading; 2) treat any trading recommendations with caution — automated trading carries financial risk; 3) if you are uncomfortable with autonomous invocation, disable model invocation for the skill or review outputs manually before acting; and 4) monitor for any updates to SKILL.md that add external endpoints, credential requests, or file access (those would change the risk profile).
Review Dimensions
- Purpose & Capability
- noteThe name/description (meme token fast-trading, launchpad monitoring) align with the documented Binance Web3 public rank/list API and the many token/filter fields in SKILL.md. One mismatch to note: SKILL.md metadata lists author 'binance-web3-team' but the registry lists no homepage and an unknown source/owner — this could be an innocuous metadata choice or a misattribution; it warrants verification of provenance.
- Instruction Scope
- okSKILL.md provides explicit API request details (POST to a Binance Web3 public endpoint, filter fields, pagination). It does not instruct the agent to read local files, access unrelated environment variables, or exfiltrate data to unknown endpoints in the visible content. The instructions are narrowly scoped to querying token lists and topic discovery.
- Install Mechanism
- okThere is no install spec and no code files; the skill is instruction-only, so nothing is written to disk or downloaded during install. This is the lowest-risk install profile.
- Credentials
- okThe skill declares no required environment variables, credentials, or config paths. The documented API is a public Binance Web3 endpoint that does not appear to require user secrets. No disproportionate credential access is requested.
- Persistence & Privilege
- okThe skill does not request always:true and uses default autonomous invocation flags. It does not request modifications to other skills or system-wide settings. Autonomous invocation is allowed by default on the platform; this skill's settings are typical.