Skill flagged — suspicious patterns detected
ClawHub Security flagged this skill as suspicious. Review the scan results before using.
Autonomous Trading System
v2.0.1全自动智能交易系统 - 无人值守、自我进化、稳定盈利。包含风险控制、市场状态识别、动态止损、仓位管理等核心功能。
⭐ 0· 229·1 current·1 all-time
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
Capability signals
These labels describe what authority the skill may exercise. They are separate from suspicious or malicious moderation verdicts.
OpenClaw
Suspicious
medium confidencePurpose & Capability
The skill's stated purpose is an autonomous trading system that would legitimately need a Node runtime and exchange API keys (BINANCE_API_KEY / BINANCE_API_SECRET). However the registry metadata at the top of the evaluation lists no required binaries or env vars while the included _meta.json declares 'node' and Binance keys; the package itself does not include the referenced runtime scripts (auto-trading-bot.js, risk-manager.js, etc.). This mismatch (documentation advertising runnable bot + absent code + conflicting metadata) is disproportionate to the claimed capability.
Instruction Scope
SKILL.md instructs the agent to run node commands (node auto-trading-bot.js start/positions/optimize/report) and references many supporting files and endpoints (tasks/KNOWLEDGE.md, /cross-review, tools/README.md, session snapshots) that are not present in the package. It also encourages contacting authors via external channels (WeChat/Telegram) and paid upgrades. The instructions therefore exceed the available artifacts and grant broad discretion without concrete, self-contained runtime steps.
Install Mechanism
There is no install specification (instruction-only), which is lowest-install risk. However README suggests an install command (clawhub install autonomous-trading-system) and paid-tier links while no installer or runtime code is included—this is an availability/integrity concern rather than a direct supply-chain download risk.
Credentials
Exchange API keys (BINANCE_API_KEY and BINANCE_API_SECRET) appear in _meta.json which is proportional to a trading bot, but the top-level registry metadata declares no required env vars. The discrepancy is important because API keys are sensitive: if the skill actually needs them they should be declared clearly and the user must be warned. There are no other unrelated credentials, but the inconsistency reduces trust.
Persistence & Privilege
Skill flags show no elevated privileges: always is false, autonomous invocation is allowed (platform default), and there is no install script requesting persistent system-wide changes. No evidence of attempts to modify other skills or agent config was found.
What to consider before installing
This package appears to be documentation/marketing for a trading bot rather than a runnable bot: the README and SKILL.md reference node scripts and many files that are not included, and metadata files conflict about required binaries and environment variables. Before installing or providing any exchange API keys: 1) ask the publisher for the complete source/code repository and a concrete install spec; 2) verify the package actually contains the executable scripts (auto-trading-bot.js etc.); 3) confirm which environment variables are truly required and why; 4) if you must provide exchange keys, create a dedicated API key with withdrawals disabled and minimal scopes, and test on a sandbox or small amount only; 5) avoid paying or contacting external phone/WeChat offers until you can audit the code and confirm identity; 6) if the author cannot supply code or the metadata remains inconsistent, treat the skill as incomplete/untrusted and do not run it with real funds or real credentials.Like a lobster shell, security has layers — review code before you run it.
latestvk979dzrbwt3am50hdref3yjdvs84w08a
License
MIT-0
Free to use, modify, and redistribute. No attribution required.
Runtime requirements
🤖 Clawdis