Back to skill
Skillv1.0.0
ClawScan security
Aavegotchi Gotchiverse · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignFeb 21, 2026, 7:45 AM
- Verdict
- benign
- Confidence
- high
- Model
- gpt-5-mini
- Summary
- The skill is internally consistent: it documents subgraph-first discovery and on‑chain simulate/broadcast flows and requests the keys, RPC and contract addresses you'd expect for those actions.
- Guidance
- This skill appears coherent for operating Gotchiverse actions, but it requires a PRIVATE_KEY that can sign real transactions. Before installing: 1) Only provide a key you control and understand — prefer an ephemeral or limited-funds account, not your primary wallet. 2) Keep DRY_RUN=1 until you fully trust runbook outputs; the instructions default to dry-run but broadcasting will use your PRIVATE_KEY when explicitly requested. 3) Verify the listed contract addresses and the GOTCHIVERSE_SUBGRAPH_URL (they point to goldsky.com in references) match official project sources. 4) Do not paste PRIVATE_KEY into chat or logs; use environment variables or a secure signer. 5) If you want to avoid giving a private key at all, consider using an external signing service or hardware wallet — this skill expects a raw PRIVATE_KEY env var to broadcast, so that would require adapting your environment. 6) If you are unsure, test on a non-sensitive account first.
Review Dimensions
- Purpose & Capability
- okName/description match the requested tools and env: cast/curl/python3 plus RPC, contract diamond addresses, token addresses and a PRIVATE_KEY are all needed to discover state via subgraphs, simulate with cast and broadcast transactions.
- Instruction Scope
- okSKILL.md is an instruction-only runbook that sticks to reading the subgraph and making cast call/send simulations and broadcasts. It includes explicit safety checks (chain id, address/private-key alignment, dry-run default, input validators) and does not instruct reading unrelated files or exfiltrating data to unexpected endpoints.
- Install Mechanism
- okNo install spec or third-party downloads — instruction-only skill. This minimizes write-to-disk/executable install risk.
- Credentials
- noteThe env list is lengthy but each variable is used by the documented flows (contract addresses, token addresses, subgraph URLs, RPC, DRY_RUN). PRIMARY credential PRIVATE_KEY is necessary to broadcast transactions — this is sensitive and grants signing power, so treat it accordingly. GOLDSKY_API_KEY is listed optional and used only for authenticated subgraph calls.
- Persistence & Privilege
- okalways:false and user-invocable true (normal). The skill does not request system-level persistence or modify other skills/configs; autonomous invocation is allowed by platform default but not privileged here.