Back to skill
Skillv1.0.2
ClawScan security
Skill Earnings Tracker · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
SuspiciousFeb 20, 2026, 7:57 PM
- Verdict
- suspicious
- Confidence
- medium
- Model
- gpt-5-mini
- Summary
- The skill is broadly what it says (a local earnings tracker) but the documentation, metadata, and security claims disagree with the included code in ways that could mislead users — review before installing.
- Guidance
- This skill appears to be a simple, local earnings tracker, but the documentation and code disagree in several places. Before installing or scheduling it to run automatically: (1) Inspect ~/.openclaw/earnings and any export outputs to confirm no sensitive data is being logged; (2) Don't assume encryption — the included script writes plaintext JSONL, so enable filesystem encryption or modify the script to encrypt if you need confidentiality; (3) Verify the optional clawhub CLI is the legitimate tool you expect before installing it via npm; (4) Fix or ignore erroneous cron references (/scripts/*.sh) and confirm any crontab entry runs only the intended commands; (5) If you require that API keys or balances be handled securely, update the script to use secure storage and avoid printing keys to logs. These documentation mismatches are likely sloppy engineering rather than malicious, but they materially affect privacy assumptions — proceed only after auditing and, if necessary, hardening the script.
Review Dimensions
- Purpose & Capability
- noteThe script and SKILL.md implement a local earnings tracker (logging JSONL files under the user's home directory and producing reports), which matches the stated purpose. However the SKILL.md metadata declares a required 'clawhub' binary while the registry metadata lists no required binaries — a mismatch. The skill does not request external credentials, which is consistent with a local tracker.
- Instruction Scope
- noteRuntime instructions are limited to local operations: running the provided Python script, invoking the (optional) clawhub CLI, and creating cron jobs. That scope is appropriate for an earnings tracker. But SKILL.md contains references that don't match the code (cron entries pointing to non-existent /scripts/*.sh, claim that credit balances are stored in ~/.private/ while the script stores JSONL under ~/.openclaw/earnings). The docs also claim 'Earnings data encrypted at rest' but the script writes plaintext JSONL with no encryption.
- Install Mechanism
- okThere is no install specification and no downloads. The distribution is instruction-only plus a local Python script. The only external dependency mentioned is an optional 'clawhub' CLI (invoked via subprocess) which the SKILL.md suggests installing via npm, but that install step is not automated by the skill.
- Credentials
- concernThe skill declares no required environment variables or credentials (which is reasonable). However SKILL.md and the Security & Privacy section make strong claims (encrypted at rest, API keys not exposed, storage under ~/.private/) that are not implemented by the script. This mismatch could give users a false sense of security. Also the SKILL.md metadata advertises a required 'clawhub' binary which is not enforced in registry metadata.
- Persistence & Privilege
- okThe skill does not request permanent/always-on inclusion and does not modify other skills or system-wide configuration. It writes files only under the invoking user's home (~/.openclaw/earnings), which is expected for a local tracker.