Solpaw
SuspiciousAudited by ClawScan on May 10, 2026.
Overview
Solpaw is a disclosed crypto token-launch skill, but it needs wallet signing authority and its code/docs conflict about whether your wallet is actually the on-chain creator.
Review carefully before installing. If you proceed, use a fresh low-balance Solana wallet, verify the SolPaw endpoint and platform wallet independently, require explicit confirmation before any fee payment or launch, and check on-chain that the resulting token creator is the wallet you intended.
Findings (4)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
A user may believe their own wallet will be the token creator when the included SDK path may instead use SolPaw/platform signing behavior.
This identity/safety claim conflicts with the supplied SDK source using the `/tokens/launch` path, while the API docs describe `/tokens/launch` as server-signed with the platform wallet as on-chain creator.
Creator: Your agent's wallet is the real onchain creator on Pump.fun ... ALWAYS use Local Mode
Do not rely on the creator claim until the code is changed to use `/tokens/launch-local` consistently; verify the creator address on-chain before paying or launching.
An agent could be placed in a position to execute non-refundable token-launch and fee-payment workflows without a strong technical approval boundary.
The skill exposes raw execution-style command dispatch while performing high-impact blockchain actions; the approval requirement is documented as an instruction, not enforced in the visible code.
disable-model-invocation: false ... command-tool: exec ... command-arg-mode: raw
Require explicit per-launch human confirmation covering token name, symbol, description, wallet, fee, initial buy amount, and endpoint before any signing or payment.
If installed with a valuable wallet key, the agent environment could authorize irreversible blockchain transactions or expose an overly broad credential.
A Solana private key grants direct signing/spending authority. That can be purpose-aligned, but here the artifacts do not clearly constrain its use and also conflict on whether signing is local or server-side.
SOLANA_PRIVATE_KEY — your wallet private key (base58 encoded, for signing)
Use only a dedicated burner wallet with minimal funds, avoid main-wallet private keys, and prefer a scoped signing flow that never stores raw private keys in the agent environment.
Users have less assurance that the published artifact matches a trusted upstream project.
The registry source is not identified, which matters more for a skill requesting crypto wallet authority and external API trust.
Source: unknown
Verify the homepage, repository, owner, and API endpoint before configuring credentials or funding a wallet.