ClawHub

Freqtrade Backtester

v1.0.3

Run Freqtrade backtests for cryptocurrency trading strategies, interpret results, and iterate. Use when downloading historical data, running a backtest, read...

0· 145·0 current·0 all-time
byDeonte Cooper@djc00p
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Benign
View report →
OpenClawOpenClaw
Benign
high confidence
Purpose & Capability
Name/description match the instructions: the SKILL.md only tells the agent to run docker-compose commands for downloading data and backtesting, which reasonably requires docker and docker-compose as declared. There are no unrelated binaries or credentials requested by the registry metadata.
Instruction Scope
Instructions are narrowly scoped to backtesting tasks (download-data, backtesting, exporting JSON) and provide guidance on iterating and reading results. They reference only expected files/paths (config.json, user_data/backtest_results/*) and do not instruct reading unrelated system files or sending data to external endpoints.
Install Mechanism
No install spec and no code files—this is instruction-only, so nothing is written to disk by the skill itself. Risk here depends on the user's docker-compose setup (the skill assumes a freqtrade service is present).
!
Credentials
Registry metadata lists zero required env vars, but the SKILL.md explicitly instructs users to provide FREQTRADE__EXCHANGE__KEY and FREQTRADE__EXCHANGE__SECRET via environment variables for exchange access. This is not malicious, but it's an inconsistency: the skill will rely on sensitive credentials if the user follows the instructions, so users should be aware and only supply exchange API keys they trust.
Persistence & Privilege
always:false and no special privileges requested. The skill is user-invocable and does not request persistent or cross-skill configuration changes.
Assessment
This instruction-only skill appears to do what it says: run Freqtrade inside docker-compose and help you interpret results. Before installing/using it: (1) ensure you have a trusted freqtrade docker-compose project (the skill assumes the service exists and will pull/run images), (2) do not expose exchange API keys in shared or public environments—use a secure shell/session or a secrets manager, and only provide keys with the minimum permissions needed (read-only or small-trade/test keys if available), (3) the registry metadata did not declare env vars but the docs instruct setting FREQTRADE__EXCHANGE__KEY and SECRET — treat this as expected behavior but be intentional about what credentials you supply, and (4) review your docker-compose file and pulled images before running to confirm they come from the official/expected sources.

Like a lobster shell, security has layers — review code before you run it.

latestvk970zem821k71ctmbqn1tgg34x83cz1z

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Runtime requirements

📊 Clawdis
OSLinux · macOS · Windows
Binsdocker, docker-compose

Comments