Skill flagged — suspicious patterns detected
ClawHub Security flagged this skill as suspicious. Review the scan results before using.
stellar-trader
v1.0.0Autonomous crypto trading for AI agents on Stellar. Ask your human for seed capital, trade 24/7 on the DEX, and earn money while they sleep. Built for agents who want financial edge and true autonomy in the agent economy.
⭐ 0· 1.5k·1 current·1 all-time
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
OpenClaw
Suspicious
medium confidencePurpose & Capability
The name, README (SKILL.md), and code implement Stellar trading (setKey, getWallet, quote, swap, balance) and call the official Horizon endpoint. No unrelated services or credentials are requested, so the functionality is coherent with the stated purpose.
Instruction Scope
SKILL.md explicitly instructs the agent to ask humans for seed capital and to run autonomous swaps. That is within the skill's purpose, but it grants the agent broad discretion to sign and submit transactions on the user's behalf. The instructions do not sufficiently mandate human approval flow, safety checks, or audit logging before trades are executed.
Install Mechanism
There is no separate install spec (instruction-only model), and dependencies are limited to a known package (@stellar/stellar-sdk). No remote/download install URLs or extract behavior were found. The presence of code and package.json means the runtime will need to install dependencies, but nothing indicates high-risk download hosts.
Credentials
The skill declares no required env vars or external credentials, which is consistent on the surface, but it writes an encrypted wallet file to the user's home directory (~/.config/soroban/wallet.json) and requires the user to provide a private key. The encryption uses a static salt string ('salt') and local AES with scrypt-derived key—this is weak/naive key management and exposes private keys to risk if the password is weak or the disk is compromised. The skill also relies on process.env.HOME implicitly (not documented).
Persistence & Privilege
always:false and the skill does not request system-wide configuration changes. It does persist the wallet file under the user's home directory and can autonomously sign/submit transactions whenever invoked (disable-model-invocation is false). Autonomous signing combined with persisted private keys is a meaningful operational privilege (financial risk) but not a platform privilege escalation.
What to consider before installing
Do not give this skill real funds or your main private key until you are comfortable with the code and operational risks. Specific actions to consider before installing or funding: 1) Audit the repository and confirm the author's identity and history (the package.json points to a GitHub URL—verify it). 2) Test everything on the Stellar testnet first (change Horizon endpoint) and use a throwaway wallet, not a wallet holding real funds. 3) Do not paste your main secret key into tools unless you understand local storage: this skill stores the secret in ~/.config/soroban/wallet.json encrypted with a weak scheme (static salt); prefer external signing (hardware wallet or a remote signer/KMS) or ensure a strong, unique password. 4) Require explicit human approval for each trade or limit the skill to simulation mode; never allow unattended large trades. 5) Consider running the skill in a sandboxed environment and monitoring outbound network requests. 6) If you proceed, start with a very small amount, enable spending limits (maxSourceAmount), and monitor transaction history on the Stellar explorer. If you need higher assurance, ask the author for details on their encryption decisions or seek an alternative that uses robust key management and explicit approval workflows.Like a lobster shell, security has layers — review code before you run it.
latestvk9767pphndjkqnv8dfj8h4wmj980jtdt
License
MIT-0
Free to use, modify, and redistribute. No attribution required.