Skill flagged — suspicious patterns detected
ClawHub Security flagged this skill as suspicious. Review the scan results before using.
Crypto Arbitrage
v1.0.0Real-time cryptocurrency arbitrage scanner across multiple exchanges. Detect price discrepancies, calculate profitable opportunities, and execute arbitrage t...
⭐ 0· 115·1 current·1 all-time
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
OpenClaw
Suspicious
medium confidencePurpose & Capability
The SKILL.md claims real-time WebSocket feeds, support for 20+ exchanges and auto-execution. The included index.js, however, uses simulated price data and does not implement real exchange API/WebSocket integrations (comments say 'in production, fetch from exchange APIs'). This is misleading: the code appears to be a demo rather than a production-ready arbitrage engine.
Instruction Scope
Runtime instructions focus on adding exchange API keys via addExchange(), starting scans, and optionally enabling auto-execute. The instructions do not direct the agent to read unrelated system files or exfiltrate arbitrary data. They do, however, expect sensitive exchange credentials to be provided at runtime.
Install Mechanism
There is no install spec (instruction-only), which is low-risk, but the package includes code files and package.json in the manifest. That mismatch is worth noting but not necessarily malicious. package.json has no external dependencies and no remote download URLs — nothing in the install surface appears to pull arbitrary code from untrusted hosts.
Credentials
The skill does not declare required env vars in the registry metadata, yet index.js reads process.env.ARBITRAGE_API_KEY optionally and SKILL.md/test examples require exchange API keys and secrets (added via addExchange()). Requesting exchange API keys is expected for this purpose, but you should NOT provide keys with withdrawal or unlimited permissions. The absence of declared required env vars is an inconsistency to be aware of.
Persistence & Privilege
always is false and the skill is user-invocable. Autonomous invocation is enabled by default (normal). Combined with trading capability this increases blast radius if the skill were to perform real trades, but currently the implementation simulates execution; nevertheless, enabling auto-execute should be treated cautiously.
What to consider before installing
This package appears to be a demo/simulator rather than a production arbitrage engine despite marketing language claiming live multi-exchange auto-execution. Before installing or supplying any real exchange credentials: 1) Inspect the full index.js to confirm whether it actually connects to exchange APIs (look for exchange REST/WebSocket clients and network endpoints). 2) Never supply API keys with withdrawal permissions — use read-only or trading-limited keys and, if possible, sandbox/test accounts. 3) Run the tests and start the scanner in dry-run mode first; validate behavior with small amounts or simulated funds. 4) Verify the repository and publisher (homepage/commit history) and prefer well-audited, open-source exchange adapters. 5) Do not enable auto-execute until you have confirmed real API integrations, safety checks, and rate-limit/error handling. If you want this to run live, expect additional code changes and secure key-handling (env vars, secrets manager) and a security review before trusting it with real funds.index.js:18
Environment variable access combined with network send.
Patterns worth reviewing
These patterns may indicate risky behavior. Check the VirusTotal and OpenClaw results above for context-aware analysis before installing.Like a lobster shell, security has layers — review code before you run it.
latestvk97bgjdvnf7cph6g58dpe096w983admt
License
MIT-0
Free to use, modify, and redistribute. No attribution required.
Runtime requirements
🔄 Clawdis