Gate CrossEx Cross-Exchange Trading
PassAudited by VirusTotal on May 11, 2026.
Overview
Type: OpenClaw Skill Name: gate-exchange-crossex Version: 1.0.2 The gate-exchange-crossex skill bundle is a legitimate trading integration for the Gate CrossEx platform, enabling cross-exchange operations across Gate, Binance, OKX, and Bybit. The skill implements robust security practices, including mandatory user confirmation for all 'write' operations (orders, transfers, and conversions) and explicit instructions in SKILL.md and README.md forbidding the collection of API secrets via chat. While it includes a runtime rule for checking updates from the official Gate GitHub repository and mentions dependency installers, these actions are transparently documented and aligned with the functional requirements of a financial trading agent. No indicators of malicious intent, such as data exfiltration or unauthorized remote execution, were detected.
Findings (0)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
The agent may rely on external instructions that were not packaged with the skill and could change after installation.
The skill makes a mutable external document authoritative over execution. Because this skill can place trades and transfer funds, unreviewed changes to that remote instruction source could materially change agent behavior.
STOP — You MUST read and strictly follow the shared runtime rules before proceeding... These rules have the highest priority. → Read [gate-runtime-rules.md](https://github.com/gate/gate-skills/blob/master/skills/gate-runtime-rules.md)
Use only a pinned or packaged copy of the runtime rules, and do not allow remote instructions to override local safety gates or user confirmation requirements.
A confirmed action can change real exchange positions, funds, or risk exposure.
These MCP tools can create/cancel/update orders, transfer funds, convert assets, and change leverage. The same document requires explicit confirmation for mutations, so this is disclosed and purpose-aligned but high impact.
Write tools - cex_crx_create_crx_order ... cex_crx_cancel_crx_order ... cex_crx_create_crx_transfer ... cex_crx_update_crx_positions_leverage
Before confirming, verify exchange, symbol, side, quantity, price, leverage, and transfer destination/account scope.
The configured API key can authorize real trading and account changes through the MCP server.
The skill requires delegated account authority with CrossEx write permissions. That is expected for trading, but it is sensitive financial privilege and the registry metadata lists no primary credential.
Authentication - API Key Required: Yes ... Permissions: Crx:Write
Use the least-privileged API key possible, keep secrets out of chat, and consider using a small test allocation as the README suggests.
Security also depends on the separate MCP installer and configuration used outside this package.
The artifact has no install spec, but its setup instructions depend on separate installer skills and MCP configuration not included in the reviewed package. This appears user-directed and purpose-aligned, but provenance should be checked.
Install: Run installer skill for your IDE - Cursor: `gate-mcp-cursor-installer` ... OpenClaw: `gate-mcp-openclaw-installer`
Install the MCP server only from a trusted source and verify the API key permissions configured there.