ClawHub
Skill flagged — suspicious patterns detected

ClawHub Security flagged this skill as suspicious. Review the scan results before using.

Einstein x402 Blockchain Analytics

v1.1.0

Blockchain analytics and DeFi intelligence via Einstein's x402 micropayment services. Use when user wants on-chain market analysis, token research, whale tracking, smart money tracking, rug pull scanning, launchpad monitoring (Pump.fun, Zora, Virtuals), portfolio analysis, MEV detection, cross-chain arbitrage, or Polymarket data. Supports Base, Ethereum, BSC, Arbitrum, Polygon, Optimism, zkSync, Solana. Costs $0.25-$1.15 USDC per query via x402 protocol on Base.

0· 1.9k·1 current·1 all-time
by@chuxo
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Suspicious
View report →
OpenClawOpenClaw
Benign
medium confidence
Purpose & Capability
The name/description (x402 micropayment analytics) matches the code and runtime requirements: Node, viem, and a private key to sign EIP-712/EIP-3009 payments. No unrelated cloud credentials or surprising binaries are requested.
Instruction Scope
SKILL.md and the scripts limit activity to service discovery, payment-challenge handling, signing, and POSTing queries. The setup and runtime scripts read/writes only skill-local config.json and environment variables. A noteworthy instruction allows saving the private key to a config.json inside the skill directory (the script explicitly warns to gitignore it) — this is convenient but increases risk if the repository is committed or the file is left world-readable.
Install Mechanism
No automatic install or remote download is performed by the skill; package.json declares a single dependency (viem) and the README asks the user to run npm install manually. No external arbitrary-code downloads, URL shorteners, or extract steps are present.
Credentials
The only sensitive environment variable requested is EINSTEIN_X402_PRIVATE_KEY, which is proportionate to a client that must sign micropayments. However, the registry metadata does not list a primary credential even though a private key is required, and the skill provides an option to persist the key to disk (config.json) which is a sensitive operation; users should prefer env vars and a dedicated low-balance wallet.
Persistence & Privilege
The skill does not request permanent inclusion, system-wide configuration changes, or access to other skills' credentials. It will only write config.json when explicitly invoked with --save-config. SKILL.md contains disable-model-invocation: true in its metadata (itself a safety measure), though the registry flags indicate the platform default (disable-model-invocation false); this mismatch is noted but not evidence of malicious intent.
Assessment
This skill appears to do what it says — it needs a wallet private key so it can sign x402 micropayments. Before installing or running it: - Do NOT use your main wallet private key. Create a dedicated wallet, fund it with only the small USDC amounts you expect to spend, and use that key. - Prefer setting EINSTEIN_X402_PRIVATE_KEY as an environment variable rather than saving the key with --save-config; if you do write config.json, ensure it is added to .gitignore and has strict filesystem permissions (chmod 600). - Review and verify the base URL (default https://emc2ai.io) and test with one small query to confirm facilitator and service behavior before sending larger payments. - Inspect scripts (already included) yourself if you have any doubts — the code shows the exact EIP-712 signing flow and external endpoints (Base RPC and emc2ai.io / Coinbase CDP facilitator). - If you need the platform to invoke the skill autonomously, verify the platform-level disable-model-invocation behavior: SKILL.md requests disabling model invocation, but registry metadata may not enforce that — treat autonomous usage as giving the skill the ability to sign and pay for queries automatically, which increases blast radius. If you are comfortable with those precautions, the skill is coherent for its stated purpose. If you are uncomfortable storing private keys or allowing automated payments, do not install or run it.

Like a lobster shell, security has layers — review code before you run it.

latestvk976zxt72s5c0hm0xepw31jggx80z40t

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Runtime requirements

🧠 Clawdis
Binsnode, curl
EnvEINSTEIN_X402_PRIVATE_KEY

Comments