Skill flagged — suspicious patterns detected
ClawHub Security flagged this skill as suspicious. Review the scan results before using.
Sales Crypto Sentiment Agent
v1.0.0Analyzes crypto sentiment, on-chain data, and technical indicators to provide verified trading signals and actionable market insights.
⭐ 0· 52·1 current·1 all-time
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
Capability signals
These labels describe what authority the skill may exercise. They are separate from suspicious or malicious moderation verdicts.
OpenClaw
Suspicious
medium confidencePurpose & Capability
The skill claims to monitor on-chain metrics, exchange flows, funding rates, options market data, and private chat platforms (Telegram/Discord) and to verify signals. These data sources typically require API keys, vendor accounts (e.g., Glassnode, exchange APIs, data aggregators) or bot tokens. The skill declares no required environment variables or credentials and the registry metadata earlier said 'none' — that is inconsistent with the claimed functionality. It is unclear how verification will be performed without access to paid/private APIs or bot credentials.
Instruction Scope
The SKILL.md tells the agent to 'track' social channels and a wide set of market signals but gives no concrete, constrained instructions or approved endpoints. This vagueness gives the agent broad discretion (e.g., web-scraping, connecting to third-party services, creating bots) and could lead to unauthorized data collection or misuse. The instructions also contain trigger phrases and an install step in metadata but no limits on what data may be fetched or transmitted.
Install Mechanism
Although the registry said 'no install spec', the SKILL.md metadata lists an install: a Node package 'clawhub' providing a binary. Installing an npm package at runtime is a moderate-risk operation: it pulls code from a package registry that should be audited. The install origin is unspecified (npm presumed); there's no checksum, vendor homepage, or justification for why this package is needed. If 'clawhub' is unknown, review its source before allowing installation.
Credentials
The skill requests no environment variables or credentials despite describing interactions that normally need API keys, bot tokens, or paid data subscriptions. This mismatch is suspicious: either the skill is only using publicly available endpoints (unlikely to fully support all claimed features), or it expects the agent to access secrets from elsewhere. The lack of declared primary credential or env requirements is disproportionate to the advertised capabilities.
Persistence & Privilege
The skill does not request 'always: true' and has no config-path or system-wide modification claims. It appears not to require elevated or permanent presence in the agent beyond the normal autonomous invocation capability (which is platform default).
What to consider before installing
Before installing, ask the publisher to clarify: (1) exactly which external data sources/APIs the skill will call (list endpoints and whether they require API keys or paid subscriptions); (2) whether it needs any bot tokens (Twitter/X, Telegram, Discord) or exchange API keys; (3) why the 'clawhub' npm package is required and provide a repository/verification link for that package. If you proceed, run the install in a sandboxed environment, review the 'clawhub' package code and any network activity, and do not provide any credentials until you confirm which keys are needed and why. Be especially cautious because financial signal tools can be high-risk; require human review of any actionable recommendations and never give the skill write/trade permissions to your accounts.Like a lobster shell, security has layers — review code before you run it.
latestvk97daysqwa0x419sdvbg8j4e4n84df56
License
MIT-0
Free to use, modify, and redistribute. No attribution required.