Skill flagged — suspicious patterns detected
ClawHub Security flagged this skill as suspicious. Review the scan results before using.
Mercury Bank
v1.0.0Mercury bank API for Digital 4 Jesus LLC (US entity). Use when the user asks about Mercury account balances, transactions, invoices, customers, or sending mo...
⭐ 0· 104·0 current·0 all-time
byDewaldt Huysamen@godsboy
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
OpenClaw
Suspicious
medium confidencePurpose & Capability
Name/description and the included script align with a Mercury banking helper (balances, transactions, invoices, customers, sending money). However the registry metadata claims no required credentials or env vars while SKILL.md and the script explicitly require a MERCURY_API_TOKEN stored in ~/.secrets/mercury.env. That mismatch is unexpected and should be corrected.
Instruction Scope
SKILL.md instructs the agent to run the included shell script (absolute path shown) and to read credentials from ~/.secrets/mercury.env. All runtime actions in the script are limited to Mercury API endpoints (GET/POST) and local file reads. The instructions do not attempt to contact any unexpected external endpoints, but they do direct the agent to read a local secrets file and to perform state-changing operations (create invoices, send money) which are sensitive and must be authorized.
Install Mechanism
No install spec or remote downloads; the skill is instruction-only with a bundled script. Nothing is fetched from third‑party URLs and no archives are extracted.
Credentials
The script requires an API token (MERCURY_API_TOKEN) and other config values in ~/.secrets/mercury.env, but the registry lists no required env vars or primary credential. Requesting a banking API token is appropriate for a banking skill, but it should have been declared explicitly. The skill also hardcodes organization/account/customer IDs in files — these are sensitive and may not be suitable to bundle publicly.
Persistence & Privilege
The skill is not always-enabled, does not request elevated persistence, and does not modify other skills or system configs. It only runs the included script on invocation.
What to consider before installing
This skill appears to be a genuine Mercury API helper, but it expects a banking API token stored in ~/.secrets/mercury.env even though the registry doesn't declare that requirement. Before installing: (1) verify the skill's source and trustworthiness; (2) inspect scripts/mercury.sh yourself (it is included) and confirm it only calls Mercury endpoints; (3) do not place high-privilege API tokens in a file until you confirm where and how the agent will access them — prefer a token with minimal permissions or a read-only scope if possible; (4) be cautious because the script can create invoices and send money — if you proceed, restrict the token's capabilities and audit actions/logs on the Mercury side. If you cannot verify the publisher or correct the declared requirements, treat this skill as untrusted.Like a lobster shell, security has layers — review code before you run it.
accounts-receivablevk973ga9we28xsd37c33nncr251834q96arvk973ga9we28xsd37c33nncr251834q96bankingvk973ga9we28xsd37c33nncr251834q96financevk973ga9we28xsd37c33nncr251834q96invoicingvk973ga9we28xsd37c33nncr251834q96latestvk973ga9we28xsd37c33nncr251834q96mercuryvk973ga9we28xsd37c33nncr251834q96
License
MIT-0
Free to use, modify, and redistribute. No attribution required.