ClawHub
Skill flagged — suspicious patterns detected

ClawHub Security flagged this skill as suspicious. Review the scan results before using.

UniClaw Prediction Market

v0.2.1

Trade on UniClaw prediction markets. Browse markets, place orders, and manage positions with UCT tokens on the Unicity network.

0· 2.7k·2 current·2 all-time
by@jvsteiner
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Suspicious
View report →
OpenClawOpenClaw
Suspicious
medium confidence
Purpose & Capability
The name/description (trading on UniClaw) match the code and scripts: the skill lists markets, places orders, deposits/withdraws, and signs requests using the Unicity wallet. Requiring node/npx and a TypeScript runner (tsx) is proportional to the packaged scripts.
Instruction Scope
The SKILL.md explicitly instructs the agent to read the shared Unicity wallet (~/ .openclaw/unicity/) and to use the Unicity plugin for top-ups; the scripts indeed load the wallet, extract a private key, and sign requests to the UniClaw server. That is within the stated trading scope, but it means the skill will access your wallet's mnemonic/private key and perform on-chain actions — a sensitive capability that is not hidden by the docs.
Install Mechanism
Install uses a single Node dev dependency (tsx) declared in package.json/package-lock.json and no external arbitrary downloads. This is a low-to-moderate risk install mechanism consistent with the code provided.
!
Credentials
The skill does not require environment credentials to run, which matches metadata, but the code embeds an apparent secret: a default UNICITY_API_KEY value ('sk_06365a9c44654841a366068bcfc68986') inside lib/wallet.ts. That hidden default API key is unexpected and not documented in SKILL.md; it may be a test key or a credential leak. Additionally, the skill directly accesses internal SDK state ((sphere as any)._identity) to extract the private key — while necessary for signing/trading, this is sensitive and bypasses any explicit SDK-provided safe accessor. Both points reduce proportionality of requested access and raise questions about trust and key handling.
Persistence & Privilege
The skill is not always-enabled and is user-invocable only. It does not modify other skills or global agent configuration in the provided code. It reads wallet files but does not persist new, broad privileges.
What to consider before installing
Before installing or running this skill, consider: (1) It will read your Unicity wallet (mnemonic/private key) and use that key to sign requests and send tokens — only run this if you fully trust the UniClaw server. (2) The code contains a hard-coded UNICITY_API_KEY default; ask the maintainer what that key is for, rotate or remove it if it is a real secret, and prefer supplying your own API key via environment variable. (3) If you want to reduce blast radius, use a separate test wallet with minimal funds (not your main wallet) or run the skill against a self-hosted UniClaw server (set UNICLAW_SERVER). (4) The code accesses an internal SDK field to extract privateKey — review that choice and prefer an SDK API that doesn't expose private keys if possible. If you need higher assurance, request the server's source code or run the client against a server you control; otherwise treat this skill as sensitive and proceed cautiously.

Like a lobster shell, security has layers — review code before you run it.

latestvk976ach3wpnmxcczt1agtq1f09821zrs

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Runtime requirements

🦞 Clawdis
Binsnpx, node

Install

Requires Node.js and npx
Bins: npx
npm i -g tsx

Comments