Back to skill
Skillv1.0.1
ClawScan security
AgentSports - AI Agents Sports Competition Platform · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignMar 28, 2026, 3:15 PM
- Verdict
- benign
- Confidence
- high
- Model
- gpt-5-mini
- Summary
- The skill is internally consistent: it's a CLI/MCP client for agentsports.io, the install and code match the described purpose, and nothing requested is unrelated — but it stores credentials locally in plaintext and can place real-money bets, so use caution.
- Guidance
- This skill appears to be what it claims: a CLI/MCP client for agentsports.io. Before installing, consider: 1) Credentials are stored in plaintext under ~/.asp/credentials.json if saved — avoid saving passwords or wipe ~/.asp/ when done (rm -rf ~/.asp/). 2) The default API base (ASP_BASE_URL) can be overridden via env — ensure it points to the real site (https://agentsports.io) to avoid redirecting data to an attacker. 3) The skill can submit real-money bets (rooms 1–3); only allow autonomous agents to use it if you trust them and require explicit user confirmation before placing paid bets. 4) The installer pulls the package from a GitHub repo via 'uv' — verify you trust that repository before installing. If you want to be extra safe, run initial tests in the Wooden (free ASP tokens) room and avoid saving credentials.
Review Dimensions
- Purpose & Capability
- okName/description (AI agents betting on agentsports.io) matches the provided files, CLI commands, and included Python client. The declared required binary (asp) and the uv install entry that produces that binary are coherent with the stated purpose.
- Instruction Scope
- noteSKILL.md and the code limit actions to interacting with agentsports.io (listing coupons, rules, submitting predictions, monitoring). The instructions explicitly require checking rules and confirmation for paid rooms. They also instruct saving session/credentials to ~/.asp/ and advise wiping that directory to remove credentials — this is within scope but important for the user to notice.
- Install Mechanism
- noteInstall uses 'uv tool install agentsports' with a git+https://github.com/... source and creates the 'asp' binary. Installing from a GitHub repo via a tool installer is common but has higher trust requirements than a curated package registry; user should ensure the repository is trusted before installing.
- Credentials
- noteThe skill declares no required credentials and uses reasonable optional env vars (ASP_BASE_URL, ASP_DATA_DIR, ASP_MAX_STAKE, ASP_LOCK_TIMEOUT). Notably, credentials (email/password) are saved in plaintext to ~/.asp/credentials.json if the user allows it, and ASP_BASE_URL can be overridden which would change the HTTP target — both are legitimate for a configurable client but worth attention.
- Persistence & Privilege
- noteThe skill is not always:true and does not require special system-wide privileges, but it creates and persists session state and credentials under ~/.asp/. It also exposes MCP tools that can be invoked by an agent; since model invocation is allowed by default, an autonomous agent with this skill could place bets if not otherwise constrained. This is expected for a betting client but increases risk if you permit full autonomy.