ClawHub
Skill flagged — suspicious patterns detected

ClawHub Security flagged this skill as suspicious. Review the scan results before using.

Wallet Balance

v1.1.5

Query multi-chain wallet balances for EVM and BTC addresses. Supports address memory for quick re-query. Optional Tokenview API for comprehensive asset cover...

0· 73·0 current·0 all-time
by@bevanding
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Benign
View report →
OpenClawOpenClaw
Benign
high confidence
Purpose & Capability
Name/description (multi‑chain wallet balances) match the code and SKILL.md. Optional Tokenview, RPC endpoints, and Redis are reasonable for this functionality. There are no requested env vars or binaries unrelated to the stated purpose.
Instruction Scope
Runtime instructions are limited to installing and running a Node gateway and using its HTTP endpoints. The SKILL.md and server.js explicitly read/write a local memory file and contact external services (RPC providers, CoinGecko, Tokenview) — all coherent with balance queries. No instructions ask the agent to read arbitrary system files or exfiltrate unrelated data. The skill warns it never handles private keys.
Install Mechanism
Install is npm install & npm start using the included package.json; dependencies are common Node libraries from npm. No downloads from unknown personal servers or URL shorteners, and no extract-from-URL steps were observed.
Credentials
The skill requests no required credentials; it lists optional env vars (PORT, REDIS_URL, RPC URLs, TOKENVIEW_API_KEY, MEMORY_STORE_PATH) that are appropriate. TOKENVIEW_API_KEY is correctly marked sensitive. There are no unrelated SECRET/TOKEN requirements.
Persistence & Privilege
always:false and normal autonomous invocation. The skill persists remembered-addresses.json (or path set via MEMORY_STORE_PATH) in its directory and runs a local HTTP server — both expected for this skill. It does not request to modify other skills or system-wide configs.
Assessment
This skill appears to do what it says, but take these precautions before installing: - Run it on a trusted or isolated host (it opens a local HTTP server by default on port 3000). Do not expose that port publicly unless you intend to. - Remember it persists remembered-addresses.json (or MEMORY_STORE_PATH); if you are on a shared system, set MEMORY_STORE_PATH to a secure location and verify file permissions. - Wallet addresses are sent to external services (public RPC nodes, CoinGecko, optional Tokenview). If you provide private RPC endpoints or a Tokenview API key, treat those secrets as sensitive. - If you need stricter control, run behind a firewall or local proxy, or run in a container. Review the included server.js if you want to confirm logging/output behavior or change the binding interface. - If you have low tolerance for external network calls, do not provide TOKENVIEW_API_KEY and consider using local or curated RPCs; note the skill will fallback to public sources when Tokenview is not configured.
server.js:13
Environment variable access combined with network send.
!
server.js:103
File read combined with network send (possible exfiltration).
Patterns worth reviewing
These patterns may indicate risky behavior. Check the VirusTotal and OpenClaw results above for context-aware analysis before installing.

Like a lobster shell, security has layers — review code before you run it.

latestvk971mhtpvr747nga6tw3gjv5ah83jrfc

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Comments