Back to skill
Skillv2.0.2
VirusTotal security
Cex Trader · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
ReviewApr 15, 2026, 7:47 AM
- Hash
- 0727006b9aac804f2c153ec1a805bd19ee59a9e24cdd731e0fefba16dbb0502d
- Source
- palm
- Verdict
- suspicious
- Code Insight
- Type: OpenClaw Skill Name: cex-trader Version: 2.0.2 The skill is designed to manage and transmit sensitive Centralized Exchange (CEX) API keys and secrets for OKX and Binance to a remote MCP server (defaulting to mcp-skills.ai.antalpha.com). While this behavior is documented in SKILL.md and README.md as part of its 'hosted' service model, the transmission of raw financial credentials to a third-party endpoint constitutes a significant security risk. The implementation in scripts/cex_trader_cli.py and the cex-setup-save tool explicitly facilitates this transfer of secrets over the network.
- External report
- View on VirusTotal