ClawHub
Skill flagged — suspicious patterns detected

ClawHub Security flagged this skill as suspicious. Review the scan results before using.

Pinata ERC-8004

v1.0.6

Register and verify ERC-8004 AI agents on-chain using Pinata IPFS and Viem for blockchain transactions

2· 569·0 current·0 all-time
byMatthias | Pinata@iammatthias
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Suspicious
View report →
OpenClawOpenClaw
Benign
medium confidence
Purpose & Capability
The requested binaries (node) and environment variables (PRIVATE_KEY, PINATA_JWT, PINATA_GATEWAY_URL) align with the described functionality (generating Node.js scripts using Viem and uploading to Pinata). Requiring a signing key for on-chain transactions and a Pinata token for IPFS is expected.
Instruction Scope
SKILL.md provides extensive runtime instructions, mandatory confirmation templates, and explicit rules to avoid leaking credentials — which is appropriate. However, this is an instruction-only skill (no code files), so the agent (or generated scripts) must be trusted to implement those rules correctly; that reliance leaves some residual risk. The instructions themselves do not appear to ask for unrelated files or credentials.
Install Mechanism
No install spec or remote downloads are present (instruction-only), so the skill does not install arbitrary code on disk. This reduces install-time risk.
Credentials
The three required environment variables are directly related to the task. PRIVATE_KEY is necessarily required to sign transactions but is a high-risk secret; PINATA_JWT is required for Pinata operations. The skill documents strict handling rules for both, which is appropriate, but still demands that users place a signing key in the agent environment — a sensitive operation.
Persistence & Privilege
The skill does not request always:true and does not ask to modify other skills or system-wide settings. Default autonomous invocation is enabled (platform default) but not combined with elevated persistence.
Assessment
This skill appears to do what it says (Pinata uploads + on-chain ERC-8004 operations) and documents strong safeguards, but it requires two high-risk secrets (an Ethereum PRIVATE_KEY and a PINATA_JWT) and is instruction-only (no code to audit). Before installing: 1) Use a dedicated wallet with only minimal ETH for gas and no valuable NFTs; 2) Prefer a restricted Pinata API key or dedicated Pinata account; 3) Avoid putting your primary private key in the agent environment — if possible use an external signer (hardware wallet, remote signer, or signing service) rather than raw PRIVATE_KEY in env vars; 4) Verify the referenced repository and any generated scripts yourself to ensure they never log or transmit the secrets; 5) Test on a testnet first and require explicit confirmations for every write operation; 6) Never paste secrets into chat or accept instructions that auto-confirm transactions. If you want higher assurance, request the skill's implementation code or an audited repo before proceeding.

Like a lobster shell, security has layers — review code before you run it.

latestvk972fj3zcg2nhgar3xeqnk91es81kwyn

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Runtime requirements

🤖 Clawdis
Binsnode
EnvPINATA_JWT, PINATA_GATEWAY_URL, PRIVATE_KEY
Primary envPINATA_JWT

Comments