Pumpclaw
WarnAudited by ClawScan on May 10, 2026.
Overview
PumpClaw matches its token-launching purpose, but it asks for a full wallet private key and can submit irreversible blockchain transactions while some credential, transaction-safety, and code-provenance details are under-declared.
Review carefully before installing. Use only a dedicated low-balance Base wallet, never a main wallet private key. Verify the missing shared contract/ABI files and contract addresses, expect gas costs, require manual approval for every transaction, and avoid the included swap path unless slippage protection is added.
Findings (5)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
A full private key can authorize transactions from that wallet; accidental or autonomous use could spend gas or affect wallet assets.
The script consumes a full Base wallet private key to create a signing account, while the registry metadata declares no required environment variables or primary credential.
const key = process.env.BASE_PRIVATE_KEY; ... const account = privateKeyToAccount(privateKey as `0x${string}`);Declare BASE_PRIVATE_KEY as a required credential, use only a dedicated low-balance wallet, and require explicit user approval before every transaction.
If the agent runs the command unexpectedly or with wrong parameters, the transaction is public and generally irreversible.
The create path signs and submits an on-chain transaction directly; the provided artifacts do not show a confirmation prompt, dry-run preview, spending limit, or rollback path.
hash = await walletClient.writeContract({
address: CONTRACTS.FACTORY as `0x${string}`,
abi: FACTORY_ABI,
functionName: "createToken",Add explicit confirmation and transaction preview steps, including contract address, gas estimate, creator address, and irreversible-effect warnings.
A token purchase could execute at a much worse price than expected or be front-run, causing avoidable financial loss.
The swap script submits trades with no minimum output or slippage protection, which is unsafe for live DeFi use despite being included with the skill.
amountOutMinimum: 0n, // No slippage protection for test
Do not use the swap script as-is for real funds; add quoting, user-approved slippage limits, and a nonzero amountOutMinimum before enabling buys.
A user cannot verify from the provided artifacts exactly which contracts or RPC endpoint the private-key-backed transactions will use.
These referenced shared files are not present in the supplied manifest, yet they determine the RPC endpoint, contract addresses, and ABIs used for wallet-signed transactions.
import { CONTRACTS, CHAIN } from "../../../shared/contracts.js";
import { FACTORY_ABI, LP_LOCKER_ABI, TOKEN_ABI } from "../../../shared/abis.js";Package the referenced contract and ABI files with the skill, pin and disclose contract addresses in code, and avoid executing wallet-signing code until provenance is clear.
Users may underestimate real gas costs and irreversible blockchain risk.
The marketing says launch cost is $0, but setup still requires a funded wallet for gas; this may be a cost-definition issue, but users should not read it as risk-free or free to execute.
Deploy ERC20 tokens with Uniswap V4 liquidity ... $0 cost ... Set BASE_PRIVATE_KEY ... wallet with ~0.001 ETH for gas
Clarify that gas is required, transactions are irreversible, and token/liquidity mechanics should be independently verified.