Ethereum Read Only
PassAudited by ClawScan on May 1, 2026.
Overview
This is a read-only Ethereum command guide; the main things to notice are the user-directed Foundry remote installer and optional RPC provider API keys.
Before installing, confirm you trust the Foundry installer source and use a dedicated RPC API key if you need one. The visible artifact is read-only and does not require wallet private keys; do not provide private keys or seed phrases for this skill.
Findings (2)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
If the installer source were compromised or spoofed, it could run code locally under the user's account.
The guide asks the user to execute a downloaded installer and updater for Foundry. This supports the skill's purpose, but it is an unpinned remote install path.
curl -L https://foundry.paradigm.xyz | bash foundryup
Verify the Foundry URL and project provenance before running the installer; prefer trusted package-manager or pinned installation methods where possible.
The RPC provider may see queried addresses/contracts, and a leaked key could be used against the user's API quota.
The guide uses RPC provider API keys in environment variables. This is expected for blockchain read access, but the key can identify the provider account and consume quota.
export ETH_RPC_URL="https://eth-mainnet.alchemyapi.io/v2/YOUR-API-KEY"
Use a dedicated low-privilege RPC key, avoid sharing it in chats or logs, and do not provide wallet private keys because this skill does not need them.