Universal Profile
WarnAudited by ClawScan on May 10, 2026.
Overview
This is a coherent blockchain-profile skill, but it handles controller private keys and can submit irreversible token transactions without an explicit confirmation boundary.
Install only if you are comfortable giving this skill access to a limited-purpose Universal Profile controller key. Do not use a full-access controller for routine tasks, verify all recipient addresses and amounts, and require explicit approval before any transaction is signed or sent.
Findings (4)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
If the key is over-permissioned, mishandled, or used by the agent unexpectedly, the user’s profile, tokens, or on-chain permissions could be changed or funds moved.
The skill expects a controller private key capable of acting for the Universal Profile, while the registry metadata declares no primary credential. This is high-impact wallet/account authority.
"controller": { "address": "0xYourControllerAddress", "privateKey": "0xYourPrivateKey" }Use a least-privilege controller key, avoid full-access permissions, store keys encrypted with restrictive file permissions, and require explicit approval before any signing or transaction.
A mistaken or autonomous invocation could submit an irreversible token transfer if credentials are configured.
The token-transfer command builds and sends a blockchain transaction directly after validating inputs. No explicit confirmation or transaction-preview gate is visible in this command.
console.log('📤 Sending transaction...'); ... result = await executeRelay(payload); ... result = await executeDirect(...)Add a mandatory transaction preview and human confirmation step for transfers and other state-changing blockchain operations; default to dry-run/read-only behavior unless the user explicitly approves sending.
Choosing the full-access preset could let the configured controller make unrestricted changes to the Universal Profile.
The skill includes a full-access permission preset. It is clearly labeled as critical and warned about, but it grants complete profile control.
'full-access': { ... permissions: ['ALL_PERMISSIONS'], riskLevel: 'CRITICAL', warning: 'This grants full control over your Universal Profile' }Prefer restricted presets such as read-only or token-operator, and only grant full access when absolutely necessary and explicitly intended.
Users have less external context to verify who maintains the wallet-related code before trusting it with keys.
The artifact provides limited provenance for a skill that handles blockchain keys and transactions. The package-lock is present and static scan is clean, so this is a provenance note rather than direct evidence of malicious behavior.
Source: unknown; Homepage: none
Verify the publisher/source before installing, and review the package contents and lockfile if using it with valuable assets.