Back to skill
Skillv5.0.0
ClawScan security
Wallet Tracker · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignMar 23, 2026, 12:45 AM
- Verdict
- benign
- Confidence
- high
- Model
- gpt-5-mini
- Summary
- The skill is an instruction-first documentation/reference tool and the included shell script only emits static help text; its declared requirements and behavior match its purpose.
- Guidance
- This skill appears coherent and low-risk: it provides static reference text and requests no credentials. Before enabling or allowing autonomous runs, inspect the full scripts/script.sh file (the provided excerpt shows it was truncated) to confirm the remainder contains only documentation output and no hidden network calls or subprocess execution. If you plan to let an agent execute the script in your environment, run it in a sandbox or limited account first. Finally, remember that while the skill itself doesn't request secrets, any agent integration or runtime environment could grant network or file access—ensure your agent's runtime policies match your security expectations.
Review Dimensions
- Purpose & Capability
- okThe name/description promise a crypto wallet reference and the repository contains only documentation and a shell script that prints reference text. There are no unrelated requested credentials, binaries, or config paths.
- Instruction Scope
- okSKILL.md explicitly states outputs are reference documentation with no external API calls or credentials. The included scripts/script.sh defines functions that emit static heredoc documentation; there are no commands shown that read sensitive files, reach out to the network, or exfiltrate data.
- Install Mechanism
- okNo install spec is declared (instruction-only). The only artifact is a shell script included in the bundle; nothing is downloaded from external URLs or installed at runtime.
- Credentials
- okThe skill declares no required environment variables or credentials and the visible script does not access env vars. There are no disproportionate secret requests.
- Persistence & Privilege
- okFlags are default (not always:true), the skill does not request persistent elevated privileges or modify other skills. Autonomous invocation is allowed by platform default but the skill content itself does not perform privileged actions.