KTrendz Lightstick Trading
PassAudited by VirusTotal on May 12, 2026.
Overview
Type: OpenClaw Skill Name: Developer: Version: Description: OpenClaw Agent Skill Suspicious High-Entropy/Eval files: 4 The skill bundle is benign. It provides functionality for trading K-pop lightstick tokens, with all scripts (`buy.sh`, `price.sh`, `sell.sh`, `setup.sh`) making network calls exclusively to `https://k-trendz.com/api/bot`. The `setup.sh` script securely handles the API key by storing it in `~/.config/ktrendz/config.json` with `chmod 600` permissions and validates it against the API. There is no evidence of data exfiltration, malicious execution, persistence mechanisms, or prompt injection attempts in `SKILL.md` that would lead the agent to perform actions outside its stated purpose.
Findings (0)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
Checking a price could potentially run unintended local code if the API response or upstream news data is malicious or compromised.
A remote API response is interpolated directly into Python source code inside an unquoted here-document. If the provider response or embedded news headline contains crafted characters such as triple quotes, it could break out of the string and execute local Python code.
RESPONSE=$(curl -s -X POST "$BASE_URL/token-price" ...)
...
data = json.loads('''$RESPONSE''')['data']Do not embed API responses into generated Python source. Pass JSON via stdin, an environment variable, or a temporary file, then parse it with json.load/json.loads safely.
If the agent misinterprets a request or runs the command too readily, it can spend funds or change token holdings before the user has a clear final approval inside the tool.
Once invoked, the script proceeds from price lookup to a live buy API call without an in-script confirmation prompt or local enforcement of the documented daily limit.
echo "Executing purchase..."
RESPONSE=$(curl -s -X POST "$BASE_URL/buy" ... -d "{\"artist_name\": \"$ARTIST\", \"max_slippage_percent\": $SLIPPAGE}")Add a required confirmation prompt, dry-run mode, and local validation for slippage and daily trade limits before sending buy or sell requests.
Anyone or any process that can use this saved key may be able to place trades on the user's K-Trendz account.
The skill collects and stores a persistent API key used for trading. The chmod 600 protection is good, but the credential grants account-level trading authority and should be treated as sensitive.
read -sp "API Key: " API_KEY ... "api_key": "$API_KEY", ... chmod 600 "$CONFIG_FILE"
Use a least-privilege API key with explicit trading limits, rotate it if exposed, and ensure users understand where it is stored.
Users have less provenance information to verify that the trading scripts and API endpoint are legitimate.
The registry metadata does not provide a verified source or homepage for a skill that performs financial trading operations.
Source: unknown Homepage: none
Verify the publisher and repository independently before installing, especially before entering a trading API key.