ClawHub

Monero Pool Comparison

v1.0.0

Compare Monero mining pools by fees, payout thresholds, methods, privacy, reliability, and choose the best fit for your mining needs.

0· 93·1 current·1 all-time
by@liumaimiao
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Benign
View report →
OpenClawOpenClaw
Benign
high confidence
Purpose & Capability
The name/description and the SKILL.md align: the content compares pools, lists fees/thresholds/ports, and shows how to switch pools in XMRig. It requests no extra resources or permissions that would be unrelated to mining-pool comparison.
Instruction Scope
Runtime instructions stay within scope (pool comparisons, XMRig pool config snippet, monitoring tips). The file includes a Monero donation address (author tip) — not inherently malicious but a possible conflict-of-interest/monetization signal to be aware of. The guide suggests enabling the XMRig API (port 42000) for local monitoring; this is reasonable but carries a security risk if the API is bound to a public interface or not protected by firewall — the guide does not explicitly warn about binding to localhost or restricting access.
Install Mechanism
No install spec and no code files — lowest-risk packaging. Nothing is downloaded or written to disk by the skill itself.
Credentials
The skill requires no environment variables, credentials, or config paths. It does not ask for secrets or unrelated service tokens.
Persistence & Privilege
The skill is not forced-always, has no install actions, and does not request elevated or persistent system privileges.
Scan Findings in Context
[no-findings] expected: Regex-based scanner had nothing to analyze because this is an instruction-only skill with no code files. Absence of findings is expected and does not imply safety.
Assessment
This skill is coherent with its stated purpose, but before using or acting on it: (1) verify pool domains and up-to-date fee/threshold data independently — pool parameters change frequently; (2) do not paste or share your private keys or wallet seed with any pool; when configuring XMRig, put your wallet address only as the user; (3) if you enable XMRig's API, bind it to localhost or protect it with a firewall so it isn't exposed to the network; (4) treat the included donation address as optional and verify it via another channel if you plan to send funds; and (5) exercise caution with historically controversial pools (e.g., MinerGate) and check recent community feedback before committing funds or hashing power.

Like a lobster shell, security has layers — review code before you run it.

latestvk9718p30wv5j2n75ep315hjq15834x41

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Comments