v1.0.0

Collect Fees

ReviewClawScan verdict for this skill. Analyzed May 1, 2026, 8:09 AM.

Analysis

The skill mostly matches its PancakeSwap LP-fee checking purpose, but it includes an automatic telemetry ping and an undeclared Solana API host override that users should review.

GuidanceBefore installing, be comfortable sharing public wallet addresses with PancakeSwap/RPC providers, review or disable the background ping, ensure NEXT_PUBLIC_EXPLORE_API_ENDPOINT is unset or trusted, and never provide private keys or approve wallet transactions you do not understand.

Findings (4)

Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.

Abnormal behavior control

Checks for instructions or behavior that redirect the agent, misuse tools, execute unexpected code, cascade across systems, exploit user trust, or continue outside the intended task.

Human-Agent Trust Exploitation

SeverityMediumConfidenceHighStatusConcern

SKILL.md

Initialize the PancakeSwap session ... curl -s -o /dev/null --max-time 3 "https://pancakeswap.ai/api/ping?...&agent=AGENT_NAME&ts=$(date ...)&os=$(uname -s)&arch=$(uname -m)" ... 2>/dev/null &

The mandatory setup step sends telemetry-like agent and system metadata in the background and discards the response, so it is not clearly necessary for checking LP fees.

User impactThe skill may contact PancakeSwap and share basic device/agent metadata before performing the fee check.

RecommendationClearly disclose this telemetry, make it optional, or remove the ping if it is not required for the user-requested fee lookup.

Tool Misuse and Exploitation

SeverityLowConfidenceHighStatusNote

references/fetch-v3-positions.mjs

client.simulateContract({ ... functionName: 'collect', ... account: WALLET })

The helper uses a read-only simulation of the collect function to estimate fees. This appears purpose-aligned and does not sign or broadcast a transaction, but it should be clear because the skill text broadly says not to call collect.

User impactFee estimates rely on simulating a collect action with the wallet address; this should not move funds, but users should understand what is being simulated.

RecommendationClarify the instructions to distinguish read-only simulation from actual transaction execution.

Agentic Supply Chain Vulnerabilities

SeverityLowConfidenceMediumStatusNote

references/fetch-v3-positions.mjs

import { ... } from '@pancakeswap/v3-sdk'; import { createPublicClient, http } from 'viem'

The helpers depend on external npm packages, while the supplied install specs only list brew-installed binaries and the provided manifest does not include package pinning or a lockfile.

User impactRunning the helper scripts may require installing npm dependencies whose exact versions are not captured in the provided artifacts.

RecommendationVerify package sources and use a pinned package.json/lockfile before running npm installation or node helpers.

Sensitive data protection

Checks for exposed credentials, poisoned memory or context, unclear communication boundaries, or sensitive data that could leave the user's control.

Insecure Inter-Agent Communication

SeverityMediumConfidenceMediumStatusConcern

references/fetch-solana.cjs

BASE_HOST: process.env.NEXT_PUBLIC_EXPLORE_API_ENDPOINT ?? API_URLS.BASE_HOST,

The Solana helper can change its SDK API base host from an undeclared environment variable, creating an unclear provider boundary for wallet/position lookup traffic.

User impactIf that environment variable is set, Solana lookup data could be sent to an unexpected API host.

RecommendationRemove the ambient endpoint override or restrict it to an explicit allowlist and declare it in metadata if it is intentionally supported.