etherscan
PassAudited by ClawScan on May 10, 2026.
Overview
This instruction-only Etherscan helper is purpose-aligned, but users should verify the external CLI source and handle the Etherscan API key and queried wallet data carefully.
Before installing or using this skill, make sure the `etherscan` CLI on your system comes from a trusted source, use a dedicated Etherscan API key, and avoid sharing private keys, seed phrases, or wallet credentials. The documented behavior is read-only blockchain lookup and appears consistent with the skill's stated purpose.
Findings (4)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
The agent may run `etherscan` commands that contact Etherscan and return blockchain data for the requested targets.
The skill tells the agent to execute CLI commands. This is central to its stated Etherscan-query purpose, but it is still local command execution that should remain tied to the user's requested blockchain lookup.
4. **执行命令**:使用 `--format json` 获取结构化数据以便后续分析
Use the skill for explicit blockchain queries only, and review the target address, transaction hash, network, and output format before running broad or repeated queries.
Using the skill can consume the user's Etherscan API quota and associates requests with that API key.
The skill uses an Etherscan API key, which is expected for Etherscan API access, but this credential need is not reflected in the registry requirement fields.
`--apikey <key>` | API Key(也可设置 `ETHERSCAN_API_KEY` 环境变量)
Use a dedicated Etherscan API key, store it in an environment variable rather than pasting it into prompts, and revoke or rotate it if it is exposed.
The safety of the actual command that runs depends on which `etherscan` executable is installed in the user's environment.
The skill depends on an external `etherscan-cli` tool, but the supplied artifacts include no install spec or reviewed implementation for that tool.
使用 etherscan-cli 命令行工具调用 Etherscan 免费 API 完成查询和分析
Install the CLI only from a trusted source, verify the binary or package name, and avoid running the skill if an unknown `etherscan` command is already on PATH.
Wallet addresses or transactions the user asks about may be observable to Etherscan and associated with the API key or request metadata.
The skill clearly relies on an external Etherscan API provider, so queried addresses, transaction hashes, contract addresses, and related metadata may be sent to that provider.
基于 Etherscan 免费 API 的命令行工具,用于查询和分析以太坊链上数据。
Only query blockchain identifiers you are comfortable sending to Etherscan, and never provide wallet private keys or seed phrases because the skill does not need them.