Skillv1.0.0

ClawScan security

Crypto Price Alerter · ClawHub's context-aware review of the artifact, metadata, and declared behavior.

BenignApr 25, 2026, 8:45 AM

Verdict: benign
Confidence: medium
Model: gpt-5-mini
Summary: The skill's code, instructions, and requirements align with its stated purpose (fetching crypto prices and computing simple indicators); it uses only public CoinGecko endpoints and requests, asks for no credentials, and has no install steps — but the bundled script contains a likely syntax/formatting bug and minor implementation roughness you should review before running.
Guidance: This skill appears to do what it claims: it queries CoinGecko and computes simple indicators, with no credential requests. Before installing or running it: (1) inspect and fix the bundled script — there is a likely string/quote formatting error in build_report that will cause a Python syntax error, so the script may not run as-is; (2) ensure the runtime has Python and the 'requests' package installed; (3) run it in a sandbox or controlled environment (no secrets) and verify network access is restricted to only the CoinGecko endpoints if you require that; (4) be aware CoinGecko is rate-limited and responses can change — consider adding error/rate-limit handling if you rely on it for alerts; (5) no credentials are needed, so do not add API keys unless you intentionally extend the skill and understand the implications.

Purpose & Capability: okName/description match the provided script: the code queries CoinGecko endpoints and computes SMA/RSI/support-resistance and alerts. No unrelated services, binaries, or credentials are requested.
Instruction Scope: okSKILL.md only instructs running the included script and describes expected args/outputs. It does not ask the agent to read unrelated files, access secrets, or transmit data to unknown endpoints; all network calls are to CoinGecko public APIs.
Install Mechanism: okNo install spec is provided (instruction-only with a bundled script). This means nothing is downloaded or written during install. Note: the script depends on the 'requests' library (not declared), so ensure runtime has that dependency.
Credentials: okNo environment variables, credentials, or config paths are requested. The skill does not attempt to read secrets or unrelated system config — access requests are proportional to the stated purpose.
Persistence & Privilege: okThe skill does not request always:true or any elevated persistence. Model invocation is allowed by default but that's normal; nothing in the skill tries to modify other skills or system-wide settings.