Skill flagged — suspicious patterns detected
ClawHub Security flagged this skill as suspicious. Review the scan results before using.
xstocks-beta
v0.0.3Search, list, and resolve xStocks tokens on Solana mainnet, and list wallet holdings; use with Jupiter for price and trading functionality.
⭐ 0· 105·0 current·0 all-time
byManuel Hidalgo@manu-xmint
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
OpenClaw
Suspicious
medium confidencePurpose & Capability
The package and SKILL.md primarily provide a hardcoded catalog and local search utilities (104 tokens), which matches the name's 'search/list/resolve' claim. However the description and SKILL.md also claim the ability to 'list wallet holdings' and perform trading flows. The included code implements only catalog/search functionality and contains no wallet, network, or trading integration. Claiming wallet-holding listing and transaction execution without those components is incoherent.
Instruction Scope
SKILL.md instructs the agent that once the user confirms a buy amount, it must 'execute the entire buy flow immediately in one pass' (resolve mint → get Jupiter quote + swap → sign & broadcast). It references using Jupiter endpoints and external signing tools (lobster.cash) but gives no concrete, declared way to obtain signing credentials or to call those services safely. The instruction to never pause between confirmation and execution raises risk (accidental/automatic fund transfers) and grants broad discretionary operational power to the agent beyond the local search scripts.
Install Mechanism
No install spec or external downloads are present; all included code is local and the catalog is hardcoded. This is low-risk from an install/code-pull perspective — nothing is fetched from external URLs during install.
Credentials
The skill declares no required environment variables or credentials, yet runtime instructions require access to wallet signing tools and remote APIs (Jupiter, lobster.cash). There is a clear mismatch: trading and signing need private keys/authentication, which are neither requested nor scoped here. That omission makes it unclear how the agent should obtain or use credentials and increases the risk of accidental exposure if the agent tries to use any available secret material.
Persistence & Privilege
The skill is not force-included (always:false) and model invocation is allowed (default). While that is normal, the combination of autonomous invocation and the SKILL.md's instruction to execute swaps immediately on confirmation increases risk: if the agent runs autonomously or misinterprets confirmation, it could trigger transactions. The skill does not request higher persistence or system-wide config changes.
What to consider before installing
What to consider before installing: the code correctly provides a local, hardcoded xStocks catalog and safe search utilities — that part is coherent. However the runtime instructions tell the agent to perform live swaps and to sign/broadcast transactions immediately after a single confirmation, yet the skill does not include or declare any wallet integration or credential requirements. That mismatch could lead to accidental fund transfers or unclear handling of private keys. If you plan to use it for trading: (1) do not enable autonomous invocation for this skill; require explicit manual steps and confirmations; (2) only allow it to run the read-only search scripts unless you have a controlled, audited wallet integration (and prefer an explicit documented mechanism for signing); (3) audit the hardcoded mint addresses against the official xStocks source before transacting; (4) prefer the agent to return the mint address and let you perform swaps with your own wallet tools rather than having the agent perform signing; (5) ask the author for explicit documentation of how signing is intended to work (what tooling, how credentials are supplied and stored) — that information would materially change this assessment.Like a lobster shell, security has layers — review code before you run it.
latestvk976x9nxzexkdrvg0vf69zw09n83q5zc
License
MIT-0
Free to use, modify, and redistribute. No attribution required.