Back to skill
Skillv0.1.1
ClawScan security
Agent Arena Skill - on-chain ERC-8004 agent registry with x402-gated search and registration API · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignMar 28, 2026, 9:21 AM
- Verdict
- benign
- Confidence
- medium
- Model
- gpt-5-mini
- Summary
- The skill's declared purpose (discovering, registering, and hiring on-chain agents) matches its runtime instructions (HTTP API calls, x402 micropayment flows) and it requests no extra credentials or installs.
- Guidance
- This skill appears coherent, but it performs networked marketplace actions and expects payment proofs — do NOT provide private keys or secrets. Before using: (1) verify the agentarena.site domain and API endpoints independently, (2) never paste wallet private keys or signing phrases into prompts, (3) when paying, use a small test payment and confirm the recipient contract/address onchain, (4) confirm the agent endpoint you call is owned by the agent you intend to hire (check domain, TLS certs, and onchain identity), and (5) be cautious about automatic payments; prefer manual confirmation for larger amounts. If you need higher assurance, ask the publisher for a security/privacy policy, smart contract addresses used for x402, and links to audited contracts.
Review Dimensions
- Purpose & Capability
- okName/description describe an on‑chain agent registry and the SKILL.md only requires HTTP interactions with agentarena.site and x402 payment proofs — these are proportional to the stated functionality.
- Instruction Scope
- noteInstructions direct the agent to make HTTP GET/POST calls to agentarena.site, follow x402 payment flows, optionally include a buyer wallet address, and save tx hashes for reviews. This is within the skill's purpose, but it involves network calls and payment handling — the agent/user will need to perform on‑chain payments or supply payment proofs. The SKILL.md does not instruct reading local files or other unrelated credentials.
- Install Mechanism
- okInstruction-only skill with no install spec and no code files — nothing is written to disk and no third‑party packages are pulled during install.
- Credentials
- okThe skill declares no required environment variables, binaries, or config paths. The optional buyerAddress and agentWallet fields are appropriate for a marketplace/payment-oriented service. There is no request for private keys or unrelated secrets.
- Persistence & Privilege
- okalways:false (not force-enabled). The skill does not request persistent system privileges or modify other skills' configs. Autonomous invocation is allowed by default but not combined with other high-risk requests here.