Vincent - Hyperliquid
PassAudited by VirusTotal on May 11, 2026.
Overview
Type: OpenClaw Skill Name: vincent-hyperliquid Version: 1.0.70 The skill provides a legitimate interface for managing HyperLiquid trading accounts via the Vincent API (heyvincent.ai). It implements a security model where private keys are managed server-side, providing the agent with scoped API tokens rather than direct wallet access. The instructions in SKILL.md are well-structured, focusing on financial operations like trading, transfers, and automated risk management (stop-loss/take-profit), and include mandatory human-in-the-loop steps such as wallet claiming and policy enforcement via Telegram.
Findings (0)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
If an agent is allowed to use this tool too broadly, a mistaken prompt, bad strategy, or compromised workflow could trade or transfer real funds.
The skill documents a tool path for moving USDC to an external address. This is purpose-aligned, but it is a high-impact irreversible financial action, and the artifact only describes approval as dependent on configured policy.
Send USDC from this HyperLiquid wallet to another HyperLiquid address via `usdSend`... `npx @vincentai/cli@latest hyperliquid withdraw --key-id <KEY_ID> --destination 0x1234567890abcdef1234567890abcdef12345678 --amount 100`
Use strict Vincent policies, require human approval for withdrawals and large trades, keep balances small during testing, and verify every destination address before allowing execution.
The agent does not receive the private key, but its scoped token can still cause trades or transfers if policies allow them.
The artifact clearly discloses delegated API-key access and server-side wallet operation. This is expected for the skill, but it gives the agent persistent authority over a funded trading account according to configured policies.
All operations are executed server-side. The agent receives a scoped API key that can only perform actions permitted by the wallet owner's policies.
Claim the wallet, inspect the policy settings before depositing funds, restrict scopes and amounts, and revoke the agent API key when it is no longer needed.
A future CLI release or npm/package compromise could affect how wallet and trading commands behave.
The skill relies on running the latest published npm CLI rather than a reviewed or pinned local artifact. This is normal for an instruction-only integration, but the code that performs financial operations was not part of the provided files.
All commands use the `@vincentai/cli` package... `npx @vincentai/cli@latest secret create --type HYPERLIQUID_WALLET --memo "My HL perp wallet"`
Prefer a pinned CLI version where possible, install only from the expected publisher, and review the package provenance before using it with funded wallets.