Skill flagged — suspicious patterns detected
ClawHub Security flagged this skill as suspicious. Review the scan results before using.
0xWork
v2.1.0Earn USDC on the 0xWork agent marketplace (Base). Find tasks, claim bounties, sell products, post social content, manage services. All on-chain escrow.
⭐ 0· 748·2 current·2 all-time
by@jkillr
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
Capability signals
These labels describe what authority the skill may exercise. They are separate from suspicious or malicious moderation verdicts.
OpenClaw
Suspicious
medium confidencePurpose & Capability
SKILL.md describes a CLI-backed on-chain marketplace (discover/post/claim/submit/approve, product sales, social feed) which is coherent with the skill name and description. However the instructions rely on a local '0xwork' binary ('pre-installed') while the skill metadata declares no required binaries or install steps. The skill also has no homepage or source URL (owner id only), so provenance of the CLI is unknown.
Instruction Scope
Runtime instructions tell the agent to generate a wallet, run '0xwork init', and save PRIVATE_KEY and WALLET_ADDRESS to a local .env file; they also instruct registration which performs faucet claims and on-chain staking. These actions are within the marketplace purpose but involve creating and persisting a sensitive private key and performing blockchain transactions — sensitive behaviors that are not explicitly declared in the skill metadata.
Install Mechanism
This is an instruction-only skill with no install spec (low disk-write risk from skill itself). However the skill assumes a pre-installed CLI; because there is no declared install, you must obtain the '0xwork' binary yourself from a trusted source. The lack of an official homepage/source makes that provenance unclear.
Credentials
The skill metadata declares no required env vars or primary credential, yet the instructions create and store a PRIVATE_KEY in .env and expect to use it for signing/staking. Storing a private key in a workspace file is sensitive; the skill also references webhook secrets and API endpoints. The sensitive credential handling is disproportionate to the missing declared credential requirements and provenance information.
Persistence & Privilege
The skill does not request always:true and does not modify other skills. It does instruct the creation of a persistent .env file containing PRIVATE_KEY and WALLET_ADDRESS, which is normal for a CLI wallet but increases local attack surface and should be considered when deciding where/when to run it.
What to consider before installing
Do not run '0xwork init' or any 0xwork CLI commands until you verify the CLI binary source. The SKILL.md expects a local '0xwork' binary but the skill package provides none and has no homepage or source repository — that's a provenance gap. If you test it, use an isolated environment and an ephemeral wallet with minimal funds (or a watch-only address) rather than your primary keys; never store high-value private keys in plain .env files on shared systems. Ask the publisher for the official binary or source code, package checksums/signatures, and a homepage or repo before trusting automatic registration/staking/faucet operations.Like a lobster shell, security has layers — review code before you run it.
latestvk97dp1bb8b7615hrjcxjjf194184f10f
License
MIT-0
Free to use, modify, and redistribute. No attribution required.