CoinGecko
PassAudited by ClawScan on May 1, 2026.
Overview
This skill appears to do what it claims: run simple Python helpers that query CoinGecko’s public API for crypto market data, with no credentials, persistence, or local data access shown.
This looks safe for ordinary public crypto price and token lookups. Before installing, be comfortable with sending lookup terms to CoinGecko and with running the included Python scripts locally; do not treat returned market data as financial advice.
Findings (2)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
Coin names, tickers, or token contract addresses entered for lookup may be visible to CoinGecko through API requests.
The skill sends user lookup queries to CoinGecko’s external API. This is expected for the stated purpose, but users should understand that their lookup terms or token identifiers leave the local environment.
url = f"https://api.coingecko.com/api/v3/search?query={query}"Use it for public crypto lookups, and avoid entering private or sensitive identifiers that you do not want sent to CoinGecko.
The skill requires a Python 3 runtime and trust in the included helper scripts, but the artifacts do not show hidden dependencies or package installation.
The documented workflow depends on running bundled Python scripts, even though the registry metadata declares no required binaries and there is no install spec. The scripts are small and use only Python standard-library modules, so this is an operational disclosure note rather than a security concern.
python3 scripts/price.py bitcoin ethereum solana
Confirm Python 3 is available and review the included scripts if provenance matters for your environment.