Skillv0.1.0

ClawScan security

Solana Market · ClawHub's context-aware review of the artifact, metadata, and declared behavior.

Scanner verdict

SuspiciousMar 7, 2026, 9:46 AM

Verdict: suspicious
Confidence: high
Model: gpt-5-mini
Summary: The skill mostly matches a market-price purpose but contains unexplained scripts and accesses resources (an external shared folder and an undeclared Helius API key) that are not declared in the SKILL.md, so you should review those before using it with real credentials.
Guidance: Before installing or running this skill: 1) Ask the author to update SKILL.md to list all available scripts (check-token-risk.js and track-whale.js) and to declare required environment variables (e.g., HELIUS_API_KEY) and any other config. 2) Inspect the referenced shared/ modules (price-service, services, config, wallet, formatter, errors) because the scripts resolve and execute code from a shared folder outside the skill — that code can affect behavior and may read credentials or call external APIs. 3) Do not provide real API keys or secrets until you confirm where they will be used and stored; consider running the skill in a sandboxed environment first. 4) If you only need price queries, request a minimal version that does not include whale-tracking or external shared dependencies. 5) If you proceed, monitor network activity and limit the skill's access to secrets (e.g., create an API key with read-only or limited scope for Helius/CoinGecko).

Review Dimensions

Purpose & Capability: concernThe name/description and primary scripts (get-price.js, market-overview.js) align with a Solana price/market skill. However, the package also contains check-token-risk.js and track-whale.js which are not listed in the SKILL.md 'Available Scripts' table, introducing capability creep. track-whale.js implements whale-tracking via Helius (requires an API key) which is plausible for a market tool but is not documented as required. The presence of risk-checking and whale-tracking scripts without being declared in the manifest is an incoherence.
Instruction Scope: concernSKILL.md instructs running node scripts under skills/solana-market/scripts/*. The code, however, resolves a shared directory outside the skill (path.resolve(..., '..','..','..','shared')), which means at runtime the scripts will load modules from a sibling shared folder outside the skill bundle. That allows access to code/config outside the skill and is not documented. Additionally, track-whale.js checks config.heliusApiKey at runtime even though no env or config requirement is declared in SKILL.md—so instructions do not fully describe required runtime context.
Install Mechanism: okThere is no install spec; the skill is instruction-only with node scripts present. Lack of an install mechanism reduces risk from arbitrary downloads. However, the scripts depend on an external shared directory and Node runtime being available, which may cause runtime failures if the expected shared modules are absent.
Credentials: concernThe registry metadata declares no required environment variables, but track-whale.js explicitly requires config.heliusApiKey (HELIUS_API_KEY) and will exit if it's not configured. This is a direct mismatch between declared environment needs and actual code. The skill may therefore prompt for or expect sensitive credentials that are not declared up front.
Persistence & Privilege: okThe skill does not request always:true and makes no changes to other skills or system-wide settings. It appears to run only when invoked, so there are no elevated persistence privileges requested by the manifest.