Back to skill
Skillv0.2.1
ClawScan security
Proxygate · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignMar 21, 2026, 10:34 PM
- Verdict
- benign
- Confidence
- medium
- Model
- gpt-5-mini
- Summary
- This instruction-only router skill is internally consistent with its stated purpose (routing ProxyGate-related requests to sub-skills); it does not itself request credentials or install anything, but you should inspect the referenced sub-skills before use because they will likely need wallet/key and payment access.
- Guidance
- This router skill by itself is coherent and low-risk: it just tells the agent which sub-skill to invoke for ProxyGate tasks. Before installing or enabling it, review the sub-skills it routes to (pg-setup, pg-buy, pg-sell, pg-status, pg-jobs, pg-update). Those sub-skills are the ones likely to request sensitive access (Solana wallet/keypair, USDC payment authority, gateway API tokens, or to run CLI binaries). Do not provide private keys or wallet seed phrases to the agent. Verify the gateway URL and docs (https://gateway.proxygate.ai) independently and ensure those endpoints are legitimate. If you allow autonomous invocation (the platform default), be especially cautious about enabling payment or wallet-capable sub-skills without manual approval. If you want higher assurance, ask to review the code/instructions for each sub-skill or require explicit user confirmation before any payment or wallet operation.
Review Dimensions
- Purpose & Capability
- okName/description match the SKILL.md: the file is a router that chooses sub-skills for setup, status, buying, selling, jobs, and updates. Nothing in the skill requires unrelated access or capabilities.
- Instruction Scope
- noteInstructions are limited to routing behavior and quick CLI reference. The doc references a config path (~/.proxygate/config.json), ed25519 wallet signatures, gateway URL, and docs — the router does not instruct reading those files itself, but it signals that sub-skills will likely access wallet/keypair and network endpoints.
- Install Mechanism
- okNo install spec and no code files — lowest-risk instruction-only skill. Nothing will be written to disk by this skill itself.
- Credentials
- noteThis router declares no required env vars or credentials (none listed). However, the SKILL.md mentions config file and keypair path and payment flows (USDC on Solana), so dependent sub-skills will plausibly require private keys, wallet access, or API tokens; review those sub-skills before granting sensitive credentials.
- Persistence & Privilege
- okalways is false and the skill does not request or modify system-wide settings. It only directs the agent to invoke other skills and does not claim persistent installation privileges.