ClawHub

Blockchain Balance Checker

v1.0.5

Query the balance of a blockchain address via Tokenview API, defaulting to BTC and requiring TOKENVIEW_API_KEY in the environment.

0· 156·0 current·0 all-time
by@bdonglobal
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Benign
View report →
OpenClawOpenClaw
Benign
high confidence
Purpose & Capability
Name and description match the included code and SKILL.md. The skill requires TOKENVIEW_API_KEY and calls Tokenview's addr/b endpoint—exactly what a Tokenview-based balance checker needs. It also documents support for multiple chains (BTC/ETH/BSC/TRON), which the code implements.
Instruction Scope
Runtime instructions tell the agent to run tokenview_api.py and supply an address and optional coin. The script only reads TOKENVIEW_API_KEY from the environment, makes an HTTPS request to services.tokenview.io, and prints JSON to stdout. There are no instructions to read unrelated files, other env vars, or to transmit data to endpoints other than Tokenview.
Install Mechanism
There is no install spec (instruction-only install), but SKILL.md and the script declare a dependency on the Python 'requests' package. The skill will fail if 'requests' is not available; nothing is downloaded or executed from untrusted URLs.
Credentials
Only TOKENVIEW_API_KEY is required (declared in skill.json and used in code). That single API key is proportional to the functionality. The code does not request other credentials or access unrelated environment variables.
Persistence & Privilege
always is false and the skill does not attempt to modify other skills or system-wide settings. It only runs a standalone Python script and does not request permanent elevated presence.
Assessment
This skill is internally consistent, but check these practical points before installing: (1) You must provide a valid TOKENVIEW_API_KEY; ensure you trust Tokenview and understand any logging/usage limits tied to that key. (2) The runtime environment needs the Python 'requests' package — if it's missing the skill will fail. (3) The skill issues outbound HTTPS requests to services.tokenview.io — avoid using highly sensitive addresses if you don't want those queries visible to the API provider. (4) The package's source/homepage is unspecified; if you require provenance, request a known publisher or inspect the code yourself before enabling autonomous use.

Like a lobster shell, security has layers — review code before you run it.

latestvk97e552m143axmtxd238gvd9wd83h5m0

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Comments