pionex-bot
AdvisoryAudited by VirusTotal on Apr 16, 2026.
Overview
Type: OpenClaw Skill Name: pionex-bot Version: 1.0.0 The pionex-bot skill provides a legitimate interface for managing Pionex trading bots (Futures Grid, Spot Grid, and Smart Copy) via the pionex-trade-cli. The SKILL.md file includes robust safety rules for the AI agent, such as mandatory confirmation for write operations, use of --dry-run flags, and explicit parameter validation. No evidence of data exfiltration, malicious execution, or prompt injection was found; the skill appears well-aligned with its stated purpose of cryptocurrency bot management.
Findings (0)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
A mistaken or over-eager invocation could add funds to a bot, extract profits, or push a trading signal without the same clearly documented confirmation gate.
The skill documents additional financial WRITE commands beyond the specific create/adjust/reduce/cancel actions named in the confirmation rule. That leaves ambiguity about whether all high-impact account-changing actions require explicit confirmation before execution.
`spot_grid invest_in ...` | WRITE; `spot_grid profit ...` | WRITE; `signal listener ...` | WRITE ... Safety Rule: "Confirm write intent for create/adjust/reduce/cancel before running without `--dry-run`."
Require explicit user confirmation for every WRITE command, including invest_in, profit extraction, and signal pushes, and default to `--dry-run` until the user approves exact parameters.
If over-scoped API keys are used, the agent or CLI may have more authority over the Pionex account than necessary.
The skill needs delegated Pionex account authority, which is expected for bot management but sensitive because the credentials can authorize trading-bot changes.
Requires API credentials and bot permissions.
Use least-privilege Pionex API credentials limited to the required bot actions, avoid withdrawal permissions, and rotate credentials if they may have been exposed.
The unreviewed external CLI would be the component actually executing account actions and handling credentials.
The skill depends on an external npm package and CLI, while the supplied install spec says there is no install spec and no code files are present for review.
package: "@pionex/pionex-ai-kit"; bins: ["pionex-trade-cli", "pionex-ai-kit"]
Verify the npm package source and publisher, pin a trusted version where possible, and review the CLI’s credential handling before use.