Back to skill
Skillv1.0.1
ClawScan security
Gecko Terminal API · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignFeb 24, 2026, 4:39 PM
- Verdict
- benign
- Confidence
- high
- Model
- gpt-5-mini
- Summary
- The skill is internally consistent: it runs a bundled Node CLI that only issues read-only HTTPS GETs to GeckoTerminal's public API, asks for no credentials, and does not request elevated persistence or autonomous invocation.
- Guidance
- This skill appears to do what it says: run the included Node CLI to fetch public, read-only market data from GeckoTerminal. Before installing, ensure you have a trusted Node runtime; verify the skill source if you require provenance (owner ID is present but source is 'unknown'); and remember the script will make outbound HTTPS requests to https://api.geckoterminal.com only. No API keys or wallets are requested and the skill is not allowed to invoke autonomously. If you want extra assurance, inspect the full CLI file (it’s bundled) or run it in a network-restricted environment first.
Review Dimensions
- Purpose & Capability
- okName/description match the provided code and instructions. The bundled script implements a read-only CLI that queries GeckoTerminal's API v2. Requiring the 'node' binary is appropriate.
- Instruction Scope
- okSKILL.md instructs the agent to run the local CLI script and documents only read-only API calls. The CLI code enforces API path normalization, rejects absolute URLs and path traversal, and restricts outbound requests to the GeckoTerminal API origin. The skill does not instruct reading other files, secrets, wallets, or sending data to unrelated endpoints.
- Install Mechanism
- okThere is no external install/download step; the repository includes the CLI script and an instruction-only setup. Nothing is fetched from arbitrary URLs during install, so install risk is low.
- Credentials
- okNo required environment variables or credentials are declared. The script reads an optional GECKOTERMINAL_TIMEOUT_MS for request timeout, which is proportionate to network I/O.
- Persistence & Privilege
- okalways is false and disable-model-invocation is true (no autonomous invocation). The skill does not request or modify other skills' configs or system-wide settings.