Wayfinder
WarnAudited by ClawScan on May 10, 2026.
Overview
Wayfinder matches its DeFi purpose, but it asks the agent to run external trading code, handle wallet secrets, and execute live financial transactions, so it should be reviewed carefully before use.
Only install this if you understand that it can control real DeFi funds. Use a fresh low-balance wallet, pin and inspect the external SDK before running setup, never paste or display seed phrases/private keys in chat, and require explicit confirmation before any live trade, bridge, withdrawal, approval, or strategy execution.
Findings (4)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
A mistaken command could bridge funds, buy shares, close positions, or otherwise move real assets without a rehearsal step.
This documents live fund-moving prediction-market actions without a dry-run safety mode, increasing the impact of mistaken or autonomous invocation.
Polymarket execution uses `polymarket_execute` and is **always live** (no dry-run flag).
Require explicit user confirmation for every live trade, bridge, withdrawal, or approval; use small test amounts and a limited wallet.
Wallet seed phrases or private keys exposed in chat could allow loss of all funds controlled by that wallet.
The skill handles persistent wallet credentials and includes an exception that could expose a seed phrase in chat despite the adjacent warning not to output secrets.
Run guided setup (creates/updates config.json + local dev wallets + MCP config) ... Only offer to display the seed phrase if the user explicitly confirms they cannot access the machine
Never display seed phrases or private keys in the conversation; keep signing material in a wallet, hardware device, or secret manager, and document credentials clearly in metadata.
The behavior that actually signs transactions and manages funds depends on external code outside this review, so upstream changes or dependency compromise could affect wallet safety.
The reviewed skill delegates installation and execution to external SDK code that is not bundled in the artifact, yet that code will handle API keys, wallets, and live DeFi actions.
git clone https://github.com/WayfinderFoundation/wayfinder-paths-sdk.git "$WAYFINDER_SDK_PATH" ... poetry install ... python3 scripts/setup.py
Install from a reviewed commit or release, inspect the SDK and dependencies before setup, and avoid storing high-value wallets in the SDK config.
A buggy or poorly reviewed custom script could approve tokens, trade, borrow, or transfer funds incorrectly.
The skill intentionally supports custom Python script execution for DeFi operations; this is disclosed and purpose-aligned, but those scripts can interact with signing wallets.
Use this guide when pre-built commands aren't sufficient and you need to write custom Python scripts for complex multi-step DeFi operations.
Review any generated script line by line, run dry-run paths where available, and only use `--force` or live execution after explicit approval.