Skillv0.1.2

ClawScan security

LooLoo Discovery · ClawHub's context-aware review of the artifact, metadata, and declared behavior.

BenignMar 13, 2026, 10:57 AM

Verdict: Benign
Confidence: high
Model: gpt-5-mini
Summary: Instruction-only skill whose requests and instructions are consistent with discovering tokens and inspecting positions via the OpenClaw platform; it asks for no extra credentials or installs.
Guidance: This is an instruction-only skill that looks coherent and low-risk: it expects the OpenClaw platform (and its bundled openclaw-looloo plugin) to provide authentication and APIs, and it asks for no extra credentials or installs. Before enabling it, confirm that your agent environment already has the OpenClaw plugin and appropriate wallet/session permissions so the calls (discover_new_tokens, get_token_summary, get_positions) will run legitimately. Note the instructions are brief — monitor the agent's actual calls and outputs (especially raw JSON) to ensure no unexpected data is accessed or transmitted, and revoke platform wallet access if you see unauthorized queries.

Purpose & Capability: okThe name/description (discover tokens, inspect activity, review positions) match the SKILL.md workflow (discover_new_tokens, get_token_summary, get_positions). No unrelated binaries, env vars, or installs are requested.
Instruction Scope: noteThe SKILL.md stays within the stated purpose and does not instruct reading files or contacting external endpoints. It does reference the 'authenticated wallet' and a bundled 'openclaw-looloo' plugin but does not declare how authentication is provided — this is plausibly handled by the platform, but the guidance is somewhat high-level and lacks error-handling or permission-check steps.
Install Mechanism: okNo install spec or code files are present (instruction-only), so nothing is written to disk and no external packages are pulled in.
Credentials: noteThe skill declares no environment variables or credentials. It expects access to an authenticated OpenClaw wallet/session; that is likely provided by the hosting platform. There are no unrelated credential requests.
Persistence & Privilege: okalways is false and the skill is user-invocable. It does not request persistent presence or attempt to modify other skills or system settings.