ClawHub
Skill flagged — suspicious patterns detected

ClawHub Security flagged this skill as suspicious. Review the scan results before using.

Golden Claw

v1.0.0

Manage GoldenClaw (GCLAW) on Solana. Create wallet, claim from faucet, check balance, send tokens, view history. For OpenClaw AI agents.

0· 546·0 current·0 all-time
by@goldenclaworg
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Suspicious
View report →
OpenClawOpenClaw
Benign
medium confidence
Purpose & Capability
The name/description (manage GCLAW on Solana: create wallet, claim, check balance, send tokens, view history) matches the included JS modules (wallet, balance, transactions, distribution, onchain-client). Optional env vars advertised (RPC URL, faucet URL, data dir, limits) align with functionality. The package description's phrasing about 'exchange services like API tokens and AI compute' is marketing/contextual but does not contradict the implemented wallet/distribution features.
Instruction Scope
SKILL.md and README instruct extracting the bundle and running npm build/install; the runtime entrypoint (dist/index.js) will automatically exec 'npm install' if node_modules is missing. The code reads/writes wallet and distribution state files under OPENCLAW_DATA_DIR (or user HOME/.openclaw by default) and interacts with Solana RPC and the configured faucet URL. There are no instructions that read unrelated system files or request unrelated credentials, but the skill will create and store encrypted wallet files and local JSON state (claimed-addresses, distribution-state, spending tracker) which is expected for this functionality.
Install Mechanism
There is no formal install spec in the registry metadata; however, dist/index.js will run 'npm install' via child_process.execSync at startup if dependencies are missing. This triggers network fetch and native builds (e.g., argon2 may compile). The packages are standard (solana/web3, spl-token, bip39, argon2, bs58) and are declared in package.json — this is coherent but increases runtime risk compared to an instruction-only skill because it performs package install operations at runtime.
Credentials
The skill declares no required environment variables in the registry metadata. The README documents optional, sensible vars (GCLAW_TOKEN_MINT, SOLANA_RPC_URL, GCLAW_FAUCET_URL, OPENCLAW_DATA_DIR, donation address, and limits) that match the code's use. No unrelated cloud credentials or broad secrets are requested. The skill does rely on a runtime password from the user to decrypt the wallet (expected).
Persistence & Privilege
The skill stores its own wallet and state files under an application-specific directory (OPENCLAW_DATA_DIR or HOME/.openclaw/gclaw-wallet). always is false and it does not request elevated or system-wide changes. It does not modify other skills' configurations. Autonomous invocation is allowed by default (not flagged on its own).
Assessment
This skill appears to do what it says: manage a GCLAW Solana wallet, claim and send tokens, and keep local state. Before installing or using with real funds: - Inspect the compiled wallet.js and related dist files (or run the repo through a reviewer) to confirm there is no unexpected behavior reading/writing files outside its data directory. - Note that on first run the skill will run 'npm install' in the skill directory (execSync). That downloads/compiles dependencies (e.g., argon2). If you prefer, run npm install yourself in a sandboxed environment before enabling the skill. - Confirm OPENCLAW_DATA_DIR location (defaults to HOME/.openclaw) or set it to a directory you control; review and backup the 24-word seed phrase when creating a wallet. - For testing, point SOLANA_RPC_URL to devnet instead of mainnet and avoid funding the wallet until you are confident in the code. - Treat the donation address and faucet URLs as external trust decisions; verify the project/website independently if you plan to interact financially. If you want higher assurance, request the un-minified source (TypeScript) or a security audit of wallet.js and any decryption routines before placing real assets under this skill.

Like a lobster shell, security has layers — review code before you run it.

latestvk97aqs1mt2dyy3479hc6gq8fk18162zp

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Comments