Skill flagged — suspicious patterns detected
ClawHub Security flagged this skill as suspicious. Review the scan results before using.
Chainstream Data
v3.1.8Query and analyze on-chain data via MCP (17 tools) and CLI across Solana, BSC, Ethereum. Use when user asks to search tokens, check token security or holders...
⭐ 0· 332·1 current·1 all-time
byChainStream@harry5556
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
Capability signals
These labels describe what authority the skill may exercise. They are separate from suspicious or malicious moderation verdicts.
OpenClaw
Suspicious
medium confidencePurpose & Capability
Name/description match the instructions: the skill is for on-chain data queries via MCP/REST/CLI/SDK across Solana/BSC/Ethereum. The documented endpoints, MCP server, CLI, and SDK are coherent with that purpose. Items like API keys, MCP headers, and CLI wallet auth are expected for this functionality.
Instruction Scope
SKILL.md and referenced docs instruct the agent/user to create wallets, import raw private keys, configure local CLI config, run purchases that perform real USDC transfers (x402/MPP), and store API keys in CLI config. These go beyond purely read-only queries and involve signing and payments. The docs repeatedly warn to obtain explicit user consent before purchases, but the instructions also describe flows that could be executed by an agent if not strictly gated.
Install Mechanism
This is instruction-only (no install spec, no code files executed by the platform). Risk from installation is low. However runtime guidance uses 'npx @chainstream-io/cli' which will pull a package from npm at runtime — users should verify the npm package/source before running.
Credentials
The skill declares no required env vars or credentials, which fits an instruction-only skill. But the instructions explicitly require API keys or wallet signing for real use and show commands to import private keys and store keys/config under ~/.config/chainstream/. Requesting or accepting private keys and performing x402 payments are proportional to DeFi/data operations, but they are high-sensitivity actions and should be handled with care.
Persistence & Privilege
always:false (good). However the skill allows flows that perform real-world payments and wallet operations. The skill is user-invocable and model-invocable (normal), so if the agent is permitted to autonomously execute skills, it could attempt plan purchases or wallet commands that trigger real USDC transfers or use imported keys. The documentation instructs to require explicit user approval for purchases, but that is a guidance, not an enforced platform restriction.
What to consider before installing
This skill appears to be a legitimate on-chain data integration, but it contains instructions to create wallets, import private keys, and perform real USDC purchases that can move money or expose secrets. Before installing or using it: (1) do not paste your private key into any assistant — prefer read-only API keys or short-lived credentials; (2) verify the origin and integrity of the npm package (@chainstream-io/cli) before running npx; (3) disable autonomous skill execution or require explicit human confirmation for any purchase or wallet-signing action; (4) prefer obtaining an API key from the dashboard (read-only) instead of using CLI wallet flows if you only need data; and (5) if you must use x402/MPP payment flows, confirm every plan selection manually and review CLI output before approving signatures.Like a lobster shell, security has layers — review code before you run it.
blockchainvk97d9aynvbxn9ht4w9k7dtpk6d83b8vkcryptovk97d9aynvbxn9ht4w9k7dtpk6d83b8vkdefivk97d9aynvbxn9ht4w9k7dtpk6d83b8vkethereumvk97d9aynvbxn9ht4w9k7dtpk6d83b8vklatestvk975gebw7e33kcrd41yyr9485n84fa03marketvk97d9aynvbxn9ht4w9k7dtpk6d83b8vkonchainvk97d9aynvbxn9ht4w9k7dtpk6d83b8vksolanavk97d9aynvbxn9ht4w9k7dtpk6d83b8vktokenvk97d9aynvbxn9ht4w9k7dtpk6d83b8vkwalletvk97d9aynvbxn9ht4w9k7dtpk6d83b8vkx402vk97d9aynvbxn9ht4w9k7dtpk6d83b8vk
License
MIT-0
Free to use, modify, and redistribute. No attribution required.