Skill flagged — suspicious patterns detected
ClawHub Security flagged this skill as suspicious. Review the scan results before using.
Agent Gary AI Powered Memecoin trader.
v0.1.0Automates memecoin trading on Solana using fdv.lol CLI with Agent Gary's AI full control via a locally generated, user-configured profile.
⭐ 0· 579·0 current·0 all-time
bySpicy Home Renovation Reviews@build23w
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
OpenClaw
Suspicious
high confidencePurpose & Capability
The declared purpose (headless memecoin trading with AI control) legitimately requires a wallet, RPC endpoint, Jupiter API key, and an LLM key. However, the skill's registry metadata lists no required env vars/credentials even though the SKILL.md explicitly requires multiple secrets. That mismatch (metadata claiming 'no required env vars' while runtime requires them) is an incoherence.
Instruction Scope
SKILL.md instructs the agent to generate/store a local wallet secret, collect RPC/Jupiter/LLM keys, write a profile.json with secrets, and run the fdv.lol CLI. The instructions say not to upload secrets, but they also instruct downloading and piping cli.mjs from remote locations and running it directly — which grants the remote script broad runtime authority. The instructions reference environment variable names that are not declared in the skill metadata.
Install Mechanism
There is no install spec, but the runtime instructions recommend curl -fsSL <url> | node — downloading and executing remote JS from fdv.lol or raw.githubusercontent.com. Running remote code piped into node is high-risk; while GitHub raw URLs are common, the primary domain (fdv.lol) is not a known package host and the practice bypasses local review unless the fetched script is inspected first.
Credentials
Although the skill metadata claims no required environment variables, the SKILL.md requires highly sensitive credentials: wallet.secret (private key), rpc.url, jupiter.apiKey, and an LLM API key (e.g., OPENAI_API_KEY). Requiring these secrets is proportionate to the trading purpose, but failing to declare them in the registry is a transparency problem and increases risk (agent will ask for secrets without the registry signaling it).
Persistence & Privilege
The skill is not always-enabled and does not request persistent system privileges in metadata. However, enabling 'Full AI Control' lets the runtime accept AI-authoritative trading decisions and perform irreversible on-chain transactions with the provided wallet. This is a high-impact capability (financial operations) even if it doesn't change system configuration.
What to consider before installing
This skill will ask you to provide very sensitive secrets (your wallet private key, an RPC URL, Jupiter API key, and an LLM API key) and then fetch and execute remote JavaScript to trade with those credentials. Before installing or running it: (1) Do not blindly pipe remote code into node — download and inspect cli.mjs (and prefer the GitHub source) and verify its integrity. (2) Require the skill author to update metadata to declare the required env vars/credentials so you know what's being requested. (3) Use a burner wallet and minimal funds for any tests; never supply a mainnet wallet with significant balance. (4) Consider running the CLI in an isolated/sandboxed environment or container and restrict network access where possible. (5) If you want the AI to run autonomously, understand that 'fullAiControl' lets the agent make irreversible trades — disable full AI control unless you accept that risk. (6) If you do proceed, supply only the minimum keys necessary, and prefer to clone the fdv.lol repo and run a checked copy of cli.mjs locally rather than executing a remote curl | node stream.Like a lobster shell, security has layers — review code before you run it.
latestvk974was24zn4vcjtz44n70w08x819w5m
License
MIT-0
Free to use, modify, and redistribute. No attribution required.