Conflux Wallet Skill
Security checks across static analysis, malware telemetry, and agentic risk
Overview
This wallet skill is purpose-aligned, but it should be reviewed carefully because it downloads unpinned code at setup and then uses that code to control real crypto funds and private keys.
Treat this as a high-risk financial integration. Review and pin the GitHub code before installation, use a fresh low-balance wallet for testing, and confirm every transaction detail manually before allowing the agent to execute it.
Static analysis
No static analysis findings were reported for this release.
VirusTotal
VirusTotal findings are pending for this skill version.
Risk analysis
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
The code that controls the wallet could differ from what was reviewed here, and any compromised or changed upstream code could affect private keys or funds.
The submitted package is instruction-only, but setup fetches code from a live GitHub repository and installs dependencies without a pinned commit or reviewed code in the artifact set. Because that code is later used for wallet creation, signing, and transactions, this is a material supply-chain concern.
if [ ! -d "$SKILL_DIR/src" ]; then git clone https://github.com/conflux-fans/conflux-wallet-skill.git /tmp/conflux-wallet-tmp cp -r /tmp/conflux-wallet-tmp/* "$SKILL_DIR/" ... cd "$SKILL_DIR" && npm install fi
Only install after reviewing the fetched repository and dependencies, preferably pinning to a trusted commit or requiring the registry package to include the audited code and lockfile.
Anyone or any process that can read the wallet file can potentially take the wallet's funds.
The skill creates and stores a local private key, which is expected for a self-custody wallet but gives the local environment direct authority over any funds held by that wallet.
The private key is stored at `~/.cfx-wallet.json` (chmod 600). **Never share this file.**
Use a dedicated wallet with small amounts, protect and back up the wallet file securely, and never paste or share its contents.
If a transaction is misunderstood or confirmed too quickly, funds may be sent, swapped, or approved in a way that cannot be reversed.
The skill documents commands that can send tokens, execute swaps, and call write functions on smart contracts. It includes user-confirmation rules, which makes this purpose-aligned, but the operations are irreversible and financially sensitive.
node src/transfer.js <chain> <to_address> <amount> --yes --json ... **⚠️ ALWAYS confirm with the user before executing transfers.**
Before confirming any transaction, independently verify the recipient, chain, token, amount, gas cost, contract address, and approval limits.