ClawHub
Back to skill
v1.0.0

DeFi Yield Scout

BenignClawScan verdict for this skill. Analyzed May 1, 2026, 5:49 AM.

Analysis

The skill appears to be a read-only DeFi yield comparison tool, but it runs a bundled Python script and relies on cached third-party APY data that users should verify before moving funds.

GuidanceThis looks safe to use as an informational scanner, but treat its APY rankings and migration verdicts as research rather than financial advice. Confirm live data, protocol risk, gas, bridge costs, and pool IDs independently before moving any assets.

Findings (3)

Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.

Abnormal behavior control

Checks for instructions or behavior that redirect the agent, misuse tools, execute unexpected code, cascade across systems, exploit user trust, or continue outside the intended task.

Tool Misuse and Exploitation
SeverityLowConfidenceHighStatusNote
SKILL.md
allowed-tools: Read, Bash, Glob ... The CLI tool is at `scripts/yield_scout.py` ... Run it with `python3`.

The skill gives the agent Bash authority to run a bundled Python CLI. This is expected for the purpose of fetching and formatting live yield data, and the artifacts do not show destructive commands or wallet/account mutation.

User impactThe agent may execute the local yield scanner when asked for APY comparisons.
RecommendationUse it for read-only research and do not authorize unrelated shell commands or wallet transactions based solely on its output.
Agentic Supply Chain Vulnerabilities
SeverityInfoConfidenceMediumStatusNote
metadata
Source: unknown; Homepage: none; No install spec — this is an instruction-only skill.

The skill has limited provenance metadata. The bundled code shown is purpose-aligned and uses no package install, so this is a provenance note rather than a security concern.

User impactUsers have less external source information to independently verify the skill publisher or project history.
RecommendationReview the bundled script and registry publisher before installing, especially because the tool may influence financial decisions.
Sensitive data protection

Checks for exposed credentials, poisoned memory or context, unclear communication boundaries, or sensitive data that could leave the user's control.

Memory and Context Poisoning
SeverityLowConfidenceHighStatusNote
scripts/yield_scout.py
POOLS_URL = "https://yields.llama.fi/pools" ... CACHE_PATH = os.path.join(tempfile.gettempdir(), "yield_scout_pools.json") ... CACHE_TTL = 900

The tool relies on third-party DeFiLlama data and reuses a predictable temporary cache for 15 minutes. This is disclosed and purpose-aligned, but stale or inaccurate cached/provider data could influence rankings and breakeven guidance.

User impactDisplayed APYs, risk scores, and GO/MAYBE/NO-GO migration guidance may be wrong if the external data or local cache is stale or inaccurate.
RecommendationVerify current pool details and risks directly on-chain or with the protocol before moving funds.