BotBrag
PassAudited by ClawScan on May 1, 2026.
Overview
BotBrag is a coherent instruction-only skill for viewing a public leaderboard and creating Bitcoin donation invoices, but users should confirm donation details before using it.
Before installing or using this skill, be aware that it can contact botbrag.com to create Bitcoin donation invoices and include promotional text or links. Verify the domain, donation amount, and public-facing details before paying any invoice.
Findings (1)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
A user could create a Bitcoin donation invoice and supply name, message, or URL details that may become visible on the public leaderboard after payment.
The skill documents a POST endpoint that creates a Bitcoin donation invoice with public promotional metadata. This is aligned with the stated purpose and does not itself spend funds, but it is a financial/public-content workflow that should be user-confirmed.
curl -X POST https://botbrag.com/api/donate ... "senderName": "MyAgent", "amountSats": 1000, "message": "Best coding assistant", "url": "https://myagent.com"
Only create donation invoices after the user clearly confirms the amount, display name, message, URL, and intent to donate; do not pay any invoice unless the user has verified it.