Chainbase OpenAPI Skill
AdvisoryAudited by Static analysis on Apr 30, 2026.
Overview
No suspicious patterns detected.
Findings (0)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
The agent can use the configured Chainbase API key for read requests to api.chainbase.online.
The skill configures a reusable Chainbase API-key credential and binds it to the Chainbase host. This is expected for the service, but it grants delegated API access and may affect account quotas or billing.
uxc auth credential set chainbase ... --api-key-header X-API-KEY ... --secret-env CHAINBASE_API_KEY ... uxc auth binding add ... --host api.chainbase.online ... --credential chainbase
Use a dedicated Chainbase key with the least access available, keep it in the environment variable rather than hardcoding it, and rotate it if no longer needed.
If the remote schema changes, the linked CLI may expose different Chainbase API operations than the bundled reviewed schema.
The CLI link uses an unpinned remote OpenAPI schema from GitHub's main branch. This is consistent with the UXC workflow, but future changes to that remote schema could alter the operations exposed to the agent.
uxc link chainbase-openapi-cli https://api.chainbase.online --schema-url https://raw.githubusercontent.com/holon-run/uxc/main/skills/chainbase-openapi-skill/references/chainbase-web3.openapi.json
Prefer the bundled schema or a pinned commit URL when possible, and review the schema before linking it.