Back to skill
Skillv1.0.0
ClawScan security
Crypto Prices in Latam by Criptoya · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
SuspiciousFeb 18, 2026, 12:56 AM
- Verdict
- suspicious
- Confidence
- medium
- Model
- gpt-5-mini
- Summary
- The skill's behavior matches its stated purpose (querying CriptoYa for crypto prices), but the runtime instructions require tools (curl and jq) that the skill metadata does not declare—an inconsistency that should be fixed before trusting or installing the skill.
- Guidance
- This skill appears to do what it says: query CriptoYa for prices and fees. Before installing, note two practical issues: (1) the runtime instructions assume curl and jq but the skill metadata does not declare them—confirm the agent environment has those binaries or update the skill to declare/fallback to built-in HTTP/JSON handling; (2) the skill makes outbound requests to https://criptoya.com, so ensure your environment permits external HTTP(S) and you are comfortable with requests/queries leaving your agent. There are no requests for secrets or unrelated system access, and the retry and error-handling behavior is reasonable. If you plan to use this for production or many queries, check rate limits and consider caching to avoid hitting the remote API too frequently.
Review Dimensions
- Purpose & Capability
- concernThe SKILL.md explicitly runs curl and pipes to jq (examples and workflow). The registry metadata lists no required binaries. Either the metadata omitted required tools or the instructions assume runtime tools that may not exist. Other requirements (APIs, endpoints) align with the crypto-prices purpose.
- Instruction Scope
- okInstructions are narrowly scoped to calling CriptoYa endpoints, parsing JSON, handling the special-case plain-text "Invalid pair", retrying network calls, and presenting summarized and per-exchange results. The instructions do not request unrelated files, credentials, or system state.
- Install Mechanism
- okNo install spec or code is present (instruction-only), so nothing is written to disk. This is the lowest-risk install model and is consistent with the skill being a thin integration.
- Credentials
- okThe skill requests no environment variables or credentials and only needs outbound network access to https://criptoya.com. That level of access is proportionate for a public-price-lookup skill.
- Persistence & Privilege
- okThe skill is not always-enabled and does not request elevated or persistent privileges. Autonomous invocation is enabled by default but that is normal and not combined here with broad credential access.