Skillv1.0.0

ClawScan security

Morpho CLI · ClawHub's context-aware review of the artifact, metadata, and declared behavior.

Scanner verdict

BenignApr 16, 2026, 4:25 AM

Verdict: benign
Confidence: medium
Model: gpt-5-mini
Summary: The skill's declared purpose (a Morpho CLI wrapper) matches its instructions and requirements, but it relies on running an external npm CLI via npx at runtime (which the bundle cannot be statically inspected), so verify the upstream package before use.
Guidance: This skill is internally coherent for querying Morpho and preparing unsigned transactions. Two practical cautions before installing/using: (1) The SKILL.md expects you to run `npx @morpho-org/cli` — npx will fetch and execute code from the npm registry at runtime; the skill bundle does not include that code for review. Verify the package identity and publisher (npm page, GitHub repo, release tags) before running it in any environment with sensitive data. (2) The skill does not request private keys and explicitly warns not to sign or broadcast, but the CLI will prompt for or accept a user address and will perform network calls; make sure you do not paste private keys or wallet JSON into the agent and always review the unsigned transaction list before signing in your wallet. If you need higher assurance, run the CLI manually in a sandboxed environment, inspect the npm package source, or request the upstream repository details from the author.

Review Dimensions

Purpose & Capability: okName/description, commands listed in SKILL.md, and required inputs (chain, user address, vault/market ids) are consistent with a Morpho CLI helper. No declared env vars, binaries, or config paths that don't belong to this purpose.
Instruction Scope: okRuntime instructions stay on-purpose: they show read queries and preparation of unsigned transactions, emphasize simulation and never signing/broadcasting, and do not instruct reading unrelated files or broad system state. The agent is told to stop and report on CLI errors rather than inventing parameters.
Install Mechanism: noteThe skill is instruction-only and instructs use of `npx @morpho-org/cli`. That implies runtime download and execution of a third-party npm package (moderate risk). This is expected for a CLI-integrator skill, but the skill bundle contains no package code to review; the remote package should be verified (publisher, source repo, release artifacts) before trusting execution.
Credentials: noteThe skill declares no environment variables or credentials (consistent with 'unsigned payloads only'). However, the invoked CLI (npx) may make network calls and could optionally use local or cloud provider keys (e.g., RPC provider API keys) if present in the environment. The SKILL.md does not document any optional env vars the CLI might honor.
Persistence & Privilege: okalways:false and no install spec; the skill does not request persistent presence or attempt to modify other skills or system-wide settings. There is no evidence it requests elevated platform privileges.