ClawHub
Skill flagged — suspicious patterns detected

ClawHub Security flagged this skill as suspicious. Review the scan results before using.

Sardis Balance

v1.0.0

Read-only balance checking and spending analytics for Sardis agent wallets

0· 230·0 current·0 all-time
by@efedurmaz16
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Benign
View report →
OpenClawOpenClaw
Suspicious
medium confidence
Purpose & Capability
Name, description, required env (SARDIS_API_KEY), and required binaries (curl, jq) align with a read-only wallet/analytics skill. However, the SKILL.md lists an npm install for "@sardis/sdk" which is not necessary for the curl/jq examples and is not reflected in the registry install metadata — this mismatch is unexplained but could be legitimate.
Instruction Scope
SKILL.md instructions are scoped to read-only GET calls to api.sardis.sh and do not request unrelated files or extra environment variables. Example scripts do reference other utilities (e.g., bc in the budget alert example) that are not declared as required binaries — a minor inconsistency that could cause runtime failures and indicates the doc and metadata are not perfectly synchronized.
!
Install Mechanism
Registry/summary said 'No install spec', but SKILL.md metadata contains an npm install line for "@sardis/sdk". Installing an npm package is a higher-risk install mechanism than pure instruction-only usage; the skill provides no provenance or version pinning for that package. This discrepancy (no install spec vs. an install entry in SKILL.md) should be resolved before trusting automatic installs.
Credentials
Only a single credential (SARDIS_API_KEY) is required and is clearly the primary credential — appropriate for this purpose. The SKILL.md claims read-only behavior, but it does not state the required API key scopes; if the API key grants write/payment permissions, that would be a risk. Also: 'No WALLET_ID required - can query any wallet you have access to' means an API key with broad scope could expose many wallets.
Persistence & Privilege
Skill is not marked 'always: true' and uses default autonomous invocation settings (normal). There is no instruction to modify other skills or system-wide settings; nothing requests persistent privileges beyond using the provided API key.
What to consider before installing
This skill appears to do what it says (read-only balance and spending queries) and only needs SARDIS_API_KEY, curl, and jq — but before installing: (1) ask the publisher to confirm whether the npm package @sardis/sdk will be installed automatically, why it's needed, and which version (verify the package on npm and its maintainer); (2) ensure the SARDIS_API_KEY you supply is scoped with least privilege (read-only) so it cannot be used to initiate payments; (3) note the SKILL.md examples use bc (for numeric comparison) though bc is not listed as required — ensure the runtime environment has bc or that examples are updated; (4) confirm the skill provenance (homepage and publisher) since registry metadata lists source as unknown. If you cannot verify the npm package and API key scopes, treat the install as higher-risk and avoid supplying high-privilege credentials.

Like a lobster shell, security has layers — review code before you run it.

latestvk97cq3d3n4fbpsd6fqz8jkw1f182gd3w

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Runtime requirements

💰 Clawdis
Binscurl, jq
EnvSARDIS_API_KEY
Primary envSARDIS_API_KEY

Comments