Skillv1.0.0

ClawScan security

Dollar Platoon | On-Demand Gigworkers · ClawHub's context-aware review of the artifact, metadata, and declared behavior.

Scanner verdict

BenignFeb 24, 2026, 10:41 AM

Verdict: benign
Confidence: medium
Model: gpt-5-mini
Summary: The skill is an instruction-only helper for a Base L2 micro-gig marketplace and its stated requirements and runtime instructions are generally consistent with that purpose — it does not request credentials, install code, or perform unexpected system operations in the provided content.
Guidance: This skill is instruction-only and doesn't request credentials or install anything, which reduces technical risk. Before installing or using it: (1) confirm you will never share private keys, seed phrases, or raw keystore files with the agent or any mailbox/webhook the skill suggests; (2) verify any on-chain contract addresses and Treasury contract details independently on-chain (e.g., via a block explorer) before depositing funds; (3) if you plan to integrate via webhooks or email mailboxes, review where data will be sent and avoid sending sensitive personal data through public submit links; (4) ask the publisher for source code or a homepage/repository if you need higher assurance — absence of a source repo reduces auditability. If you can provide the full SKILL.md (untruncated) or any integration examples, I can re-check for any instructions that might request private keys or other sensitive data.

Review Dimensions

Purpose & Capability: okThe name/description (peer-to-peer gig payroll on Base L2) matches the SKILL.md content: wallet guidance, reputation, on-chain USDC payouts, and webhook/mailbox integration. The skill declares no env vars, binaries, or installs, which is reasonable for a documentation/instruction-only helper.
Instruction Scope: noteThe instructions document marketplace flows, wallet management, and integration options (email/webhook/public submit link). In the excerpt provided there are no directives for the agent to read local files, access unrelated environment variables, or transmit arbitrary data. However the doc discusses managed wallets and key recovery; the file does not explicitly show whether the skill instructs agents to request or handle private keys/seed phrases — if later parts instruct collecting private keys that would be a concern.
Install Mechanism: okThere is no install spec and no code files. This is low risk: nothing will be downloaded, written to disk, or executed by the platform as part of installing the skill.
Credentials: okThe skill declares no required environment variables, credentials, or privileged config paths. That is proportionate for a documentation-style skill that explains how a marketplace works and how to integrate with webhooks/submit links.
Persistence & Privilege: okalways: false and default autonomous-invocation settings are preserved. The skill does not request permanent system presence or modifications to other skills. No config paths or system-level privileges are requested.