kaspa-wallet
WarnAudited by ClawScan on May 10, 2026.
Overview
This appears to be a Kaspa wallet skill, but it asks for full wallet secrets and can send irreversible cryptocurrency payments without clear confirmation or scoped safety controls.
Treat this as a high-risk financial tool. If you install it, use testnet or a dedicated low-balance wallet, never expose a primary seed phrase, verify the unpinned dependency and full source first, and require explicit human approval before every send, max, consolidation, or retry action.
Findings (4)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
An agent mistake, bad prompt context, or wrong address could cause irreversible loss of KAS funds.
The skill exposes direct cryptocurrency transfer commands, including a full-balance 'max' option, and gives agent-facing send examples without documenting mandatory user confirmation.
./kaswallet.sh send <address> <amount> ... ./kaswallet.sh send <address> max ... ## Examples for Agents ... ./kaswallet.sh send kaspa:recipient... 1.0
Only use with a dedicated low-balance or testnet wallet unless the skill adds explicit per-transaction confirmation showing network, recipient, amount, and fee before any send or max action.
Providing a main-wallet key or seed gives the skill full ability to spend that wallet's funds.
A private key or mnemonic grants full wallet spending authority. This is expected for a wallet, but the registry metadata declares no primary credential or required environment variables, so the permission boundary is under-disclosed.
export KASPA_PRIVATE_KEY="64-character-hex-string" # OR export KASPA_MNEMONIC="your twelve or twenty four word seed phrase"
Do not provide a primary wallet seed or private key. Use a separate, limited-balance wallet, and require the skill metadata to declare these credentials explicitly.
A changed or compromised dependency could run code in the wallet environment and affect wallet operations or secrets.
A normal wallet command can trigger installer execution. install.py then pip-installs requirements.txt, which contains an unpinned 'kaspa' dependency, while the registry has no install spec.
echo "Python venv not found. Bootstrapping with: $PY install.py" >&2 "$PY" install.py >&2
Pin dependency versions, publish an explicit install spec, and review the package source before using the skill with real funds.
A bad parsed self-address or mistaken retry could compound a failed send into multiple irreversible blockchain transactions.
The agent-facing recovery path can turn one failed payment into an additional full-balance consolidation transaction plus a retry, without a stated confirmation boundary.
If errorCode == "STORAGE_MASS_EXCEEDED": # Run: ./kaswallet.sh send YOUR_ADDRESS max # Then retry original send
Make consolidation a separate user-approved workflow and verify the self-address, amount, network, and fees before retrying any payment.