ClawHub
Skill flagged — suspicious patterns detected

ClawHub Security flagged this skill as suspicious. Review the scan results before using.

Crypto Wallet

v1.0.1

Discover supported cryptocurrencies, generate deposit addresses, and withdraw crypto to external wallets.

0· 211·0 current·0 all-time
by@d9m1n1c
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Benign
View report →
OpenClawOpenClaw
Suspicious
medium confidence
!
Purpose & Capability
The skill's stated purpose (list coins, generate deposit addresses, withdraw funds) matches the API endpoints in SKILL.md, but the declared requirement (only AIOT_API_BASE_URL) is incomplete: the endpoints are labeled 'Requires auth' and runtime text says to verify a bearer token, yet no credential env var (API key, bearer token, client secret) is declared. Also the declared primaryEnv is a base URL (not a credential), which is unusual.
!
Instruction Scope
SKILL.md gives concrete API flows and security guidance (ask for transaction PIN each time, don't cache secrets), which is appropriate, but it leaves authentication acquisition undefined (it says 'verify session has a valid bearer token' without describing how to obtain or store it). The default base URL is a 'dev' host (https://payment-api-dev.aiotnetwork.io), which means calls could go to a development environment by default — surprising for a production crypto wallet and potentially dangerous if users assume production endpoints.
Install Mechanism
Instruction-only skill with no install spec and no code files; nothing is written to disk by the registry package itself. This is the lowest install risk.
!
Credentials
Only AIOT_API_BASE_URL is required/declared. That is insufficient for an API labeled 'Requires auth' and for withdrawal operations that normally require credentials and user verification. The skill asks for a 4-digit transaction PIN at runtime but gives no secure channel or storage guidance for delivering that PIN to the service. The default base URL being a dev host increases the risk of misconfiguration or accidental data exposure to an unintended endpoint.
Persistence & Privilege
The skill does not request always:true and does not declare any config paths or system-wide changes. Autonomous invocation is allowed by default (disable-model-invocation is false), which is normal; there is no indication the skill requests persistent privileges beyond normal runtime use.
What to consider before installing
This skill describes legitimate crypto wallet operations but is missing critical pieces: it only asks for an API base URL (not any credentials) while its API calls require a bearer token, and it defaults to a development API hostname. Before installing or using it, verify these things with the publisher: (1) where and how bearer tokens or API keys are supplied (declare required env vars), (2) confirm the correct production API endpoint (do not use the dev URL unless you control that environment), (3) ensure you trust the unknown source/homepage (no homepage provided), and (4) never provide transaction PINs or credentials unless you have verified the endpoint and its TLS certificate. If you cannot get clear answers and a trustworthy homepage/repo, treat this skill as untrusted.

Like a lobster shell, security has layers — review code before you run it.

latestvk97f5hbe0m3etctm76rcb0060s838jgf

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Runtime requirements

EnvAIOT_API_BASE_URL
Primary envAIOT_API_BASE_URL

Comments