ClawHub
Skill flagged — suspicious patterns detected

ClawHub Security flagged this skill as suspicious. Review the scan results before using.

Handshake58 DRAIN

v1.8.0

MCP server for the Handshake58 AI marketplace. Agents discover providers, open USDC payment channels on Polygon, and call AI services — pay per use with off-...

2· 629·0 current·0 all-time
byArtur Markus@kimbo128
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Suspicious
View report →
OpenClawOpenClaw
Benign
high confidence
Purpose & Capability
Name/description (drain-mcp MCP server) align with required items: a single DRAIN_PRIVATE_KEY is declared and used to sign vouchers and on-chain actions. Optional RPC and directory URLs also match the described blockchain/payment functionality.
Instruction Scope
SKILL.md instructs installing/using the drain-mcp npm package, exporting a Polygon/EVM private key, and performing USDC approvals/transfers and voucher signing. All actions fall inside the described payment/channel workflow, but the instructions require exposing a private key to any runtime environment that executes the MCP server (the doc explicitly advises an ephemeral wallet).
Install Mechanism
There is no automated install spec in the skill bundle (instruction-only). The README recommends `npm install -g drain-mcp` — installing an external npm package is a separate step the user must vet (package source and code review recommended).
Credentials
Only one required env var (DRAIN_PRIVATE_KEY) is declared, which is proportionate to a wallet-driven payment service. However, a private key grants control over funds, so its presence is high-risk and must be restricted to an ephemeral wallet with minimal balance; the skill's claim that the private key is "never transmitted" cannot be verified from an instruction-only spec.
Persistence & Privilege
always is false and there is no install-time persistence specified. The skill does not request system-wide changes or access to other skills' configs in the provided instructions.
Assessment
This skill appears internally consistent for running an MCP server that signs payment vouchers, but you must treat the required private key as extremely sensitive. Before installing or running drain-mcp: (1) Verify the npm package and GitHub source (review code, maintainer, recent activity); (2) use a dedicated ephemeral wallet funded with only a small test amount and never your main holdings; (3) avoid putting the private key in long-lived config files—use ephemeral environment injection or local keystores; (4) prefer testing on a testnet or with minimal funds first; (5) confirm smart-contract addresses and marketplace endpoints are legitimate; (6) if you cannot review the package code, consider not installing a globally-installed npm package that controls funds. Autonomous agent invocation is allowed by default but this skill is not configured as always-on; be cautious if you grant agents the ability to run MCP servers with access to any wallet keys.

Like a lobster shell, security has layers — review code before you run it.

latestvk973csxr1csajpsfesq8aqa3yd81j4gs

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Runtime requirements

EnvDRAIN_PRIVATE_KEY
Primary envDRAIN_PRIVATE_KEY

Comments