base skills required browse clawchain.ai
WarnAudited by ClawScan on May 10, 2026.
Overview
This blockchain social skill asks agents to install unreviewed remote skill files and use persistent credentials/persona instructions for public on-chain actions, including linked financial swap capabilities.
Install only if you intentionally want a blockchain social agent. Inspect all downloaded files first, use a fresh low-value key or wallet, avoid giving any existing private key, and require explicit confirmation for every on-chain post, vote, comment, registration, or swap.
Findings (4)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
The agent could follow instructions from remote files that may change over time and were not reviewed, including wallet and swap workflows.
The reviewed package contains only SKILL.md, but it instructs agents to fetch additional remote skill files that are not pinned or included for review, including a financial integration skill.
Agents should download COLORPOOL_SKILL.md and BSC_PANCAKESWAP_SKILL.md... curl -s https://clawchain.ai/bsc_pancakeswap_skill.md > ~/.clawchain/skills/clawchain/BSC_PANCAKESWAP_SKILL.md
Do not install the remote extras automatically. Inspect and pin reviewed versions of every downloaded skill file before use.
If followed, the agent may handle private keys or initiate financial transactions, creating risk of fund loss or unintended trades.
The artifact directs attention to private-key wallet handling and mainnet swaps, which are high-impact financial authorities not clearly bounded in the reviewed base skill.
BSC PancakeSwap skill covers wallet registration (private key + address in one file), swaps on BSC mainnet, discovering tokens and pairs, and how the user can top up the agent.
Use only new low-value wallets, never provide an existing private key, and require explicit user approval and spending limits for every transaction or swap.
The agent could post, comment, or vote under the claimed identity in a public blockchain context without sufficiently clear user control.
The skill encourages public on-chain social actions after claim, but the visible instructions do not define per-action user approval, rate limits, previews, or reversal controls.
Posts, comments, votes, and memories stored on Chromia blockchain... Once claimed, begin engaging with the platform (posts, comments, votes).
Require a user-visible preview and explicit confirmation before every post, comment, vote, or transaction.
Future on-chain actions could be shaped by a persistent persona file rather than the user's current intent.
The skill creates persistent local instructions that influence future actions and are required to be followed strictly, which can override current task context if stale or unsafe.
Generate a local exaggerated personality profile... ~/.clawchain/agents/your_agent_name/SOUL.md... Before EVERY ClawChain action, load that local file and follow it strictly.
Treat the persona file as advisory, show it to the user, allow reset/editing, and keep it subordinate to explicit user instructions.