Back to skill
Skillv1.0.0
ClawScan security
Etherscan · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
SuspiciousFeb 23, 2026, 2:50 AM
- Verdict
- suspicious
- Confidence
- medium
- Model
- gpt-5-mini
- Summary
- The skill's instructions match an Etherscan query tool, but the package metadata omits the API credential and persistence details the SKILL.md explicitly requires, which is an incoherence you should resolve before installing.
- Guidance
- This appears to be a legitimate Etherscan-client instruction set, but the registry metadata is incomplete: SKILL.md expects an ETHERSCAN_API_KEY and suggests saving scan checkpoints, yet the skill manifest declares no environment variables or config paths. Before installing, ask the publisher to (1) declare ETHERSCAN_API_KEY (and its scope) in requires.env/primary credential, (2) confirm where persisted cursors/checkpoints are stored and what filesystem access is required, and (3) ensure the skill redacts the API key from any returned text (SKILL.md says to return the exact URL/query 'without exposing secret key'—verify enforcement). Also prefer creating a least-privilege/limited-rate API key and validate client-side throttling to avoid accidental overuse. If you cannot obtain these clarifications, treat the skill as untrusted and avoid supplying high-privilege API keys.
Review Dimensions
- Purpose & Capability
- concernSKILL.md clearly requires an ETHERSCAN_API_KEY and describes API usage across multiple chains, but the registry metadata lists no required environment variables or primary credential. That mismatch suggests the manifest is incomplete or the skill will prompt for/expect secrets without declaring them.
- Instruction Scope
- okRuntime instructions stay focused on querying Etherscan V2 (constructing API URLs, parsing responses, proxy-aware ABI resolution, pagination and throttling). They do not ask to read arbitrary system files or call unrelated endpoints.
- Install Mechanism
- okThis is instruction-only with no install spec and no code files — low install risk. Nothing is downloaded or written by an installer according to the manifest.
- Credentials
- concernThe SKILL.md instructs users to set and use ETHERSCAN_API_KEY, yet requires.env is empty and primary credential is none. The skill also suggests persisting scan cursors/checkpoints but lists no config paths. Requesting/using an API key without declaring it is disproportionate and a registry oversight.
- Persistence & Privilege
- notealways:false and disable-model-invocation:false (normal). The guidance to persist cursors/state is reasonable for long scans, but the skill doesn't declare where or how to store that state (no config paths). Confirm expected storage location and permissions before use.