Skillv0.1.0

ClawScan security

Xian SDK · ClawHub's context-aware review of the artifact, metadata, and declared behavior.

BenignFeb 11, 2026, 9:21 AM

Verdict: benign
Confidence: high
Model: gpt-5-mini
Summary: The skill is an instruction-only reference for the xian-py SDK and what it requests and instructs is consistent with that purpose — no unexpected credentials, installs, or persistent privileges are requested.
Guidance: This skill is a documentation/instruction pack for the xian-py SDK and appears internally consistent. Before installing or using it: 1) verify the upstream xian-py package/repository (pip package name and source) to avoid installing a malicious package with the same name; 2) never hard-code private keys into scripts — use secure key management or environment secrets and avoid sharing code containing keys; 3) be careful which node endpoints you point to (public/third-party nodes can see transaction metadata); 4) run pip installs in a controlled environment (virtualenv) and review the actual package files if you have security concerns; 5) because the skill is instruction-only, it won’t itself write files or fetch code, but following its instructions (pip install, running Python code) can execute arbitrary code, so audit the xian-py package and its dependencies if you plan to run on sensitive systems.

Purpose & Capability: okName/description match the content: SKILL.md documents how to use the xian-py Python SDK (wallets, queries, txs, contracts). There are no unrelated requirements (no cloud credentials, no unrelated binaries).
Instruction Scope: okInstructions are focused on SDK usage and sample code. They show how to create wallets, sign, query state, simulate transactions and deploy contracts. Examples include entering private keys directly (not a scope violation, but a security practice note — they warn "Keep secret!"). The docs reference node endpoints (e.g., http://node:26657) which is expected for blockchain interaction; users should be aware that using remote nodes exposes transaction metadata to those nodes.
Install Mechanism: okNo install spec in the skill bundle itself. SKILL.md suggests installing xian-py via pip (a normal, proportional mechanism). Nothing is downloaded from untrusted URLs and the skill does not write code to disk by itself.
Credentials: okThe skill declares no required environment variables, secrets, or config paths. Sample code uses private keys/wallets but does not request platform credentials. This is proportionate to a developer reference for an SDK.
Persistence & Privilege: okalways is false and there is no install step that requests persistent presence or modifies other skills/system-wide settings. The skill being user-invocable and allowing model invocation is the platform default and appropriate here.