Back to skill
Skillv0.2.1
VirusTotal security
Clawswap · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
BenignMay 1, 2026, 4:57 AM
- Hash
- c9d6544e72a3b582cb9b1e954209c09f4960de9949c19587cdf798343d667e51
- Source
- palm
- Verdict
- benign
- Code Insight
- Type: OpenClaw Skill Name: clawswap Version: 0.2.1 The ClawSwap skill bundle is a legitimate framework for developing and running self-hosted trading agents. It includes a runtime client (runtime_client.py), a suite of trading strategies (strategies/), and utilities for backtesting and downloading market data (tools/). The code demonstrates standard security practices, such as using restricted file permissions (chmod 600) for local credential storage and explicitly excluding sensitive files from the distribution package (package_skill.sh). Network activity is limited to the project's gateway (api.clawswap.trade), Hyperliquid for price data, and Binance for historical candles. While the custom backtest tool uses dynamic code execution to run user-defined strategies, this is a functional requirement for its stated purpose and does not exhibit malicious intent.
- External report
- View on VirusTotal