spanDEX Agentic Swap
WarnAudited by ClawScan on May 10, 2026.
Overview
The skill is transparent about its purpose, but it can send real crypto swap transactions using API-provided calldata, and full transaction verification is optional rather than required.
Use this skill only with a dedicated low-balance wallet and strict Privy spending limits. Install the recommended transaction-verification skill before allowing execution, and confirm the final quote, token amounts, recipient, approval target, and transaction target before signing.
Findings (3)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
A wrong, compromised, or malicious quote/calldata response could cause the wallet to approve or send a transaction that does not match the user's intended swap.
The skill can execute API-generated transaction calldata while making independent verification optional, which is high-impact for token approvals and swaps.
This skill works without it, but it cannot independently verify that the calldata actually delivers the intended asset flow. Without it, only best-effort approval checks are possible
Install and require onchain-verify-transaction before execution, use small spending limits and exact approvals, and require explicit user confirmation of the final quote, recipient, token amounts, and transaction target before signing.
If configured with a funded wallet or broad spending policy, the agent may be able to move or approve assets within the allowed policy when the user asks it to execute a swap.
The skill relies on delegated wallet authority through Privy to submit real blockchain transactions, which is expected for the stated purpose but financially sensitive.
Executes swaps onchain via Privy's agentic wallet RPC
Use a dedicated low-balance wallet, configure strict Privy spending policies, and review each transaction before allowing execution.
The safety of execution depends partly on another skill and its wallet permissions, not only on this skill's instructions.
The skill's execution path depends on another installed skill. This is disclosed and purpose-aligned, but users should understand that security also depends on the Privy skill and its configuration.
Execution requires the Privy skill (`privy`). Do NOT attempt to send transactions without it.
Install Privy only from a trusted source, review its permissions, and keep wallet policies narrow.