v1.0.2

solana-bundler-sniper-volume-bot

ReviewClawScan verdict for this skill. Analyzed May 1, 2026, 5:55 AM.

Analysis

This is openly a Solana trading automation skill, but it gives an agent broad authority to trade, transfer, drain wallets, and run automated market activity, so it needs careful review before installation.

GuidanceTreat this as high-risk financial automation, not a general utility skill. Only install it if you intentionally want an agent to operate Solana wallets through Gank. Use fresh or low-balance wallets, require explicit approval for every buy, sell, transfer, drain, launch, and bot session, verify the provider/source independently, protect and revoke the API key when done, and consider the legal or platform-policy risks of volume bots, coordinated buys, and privacy-swap flows.

Findings (5)

Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.

Abnormal behavior control

Checks for instructions or behavior that redirect the agent, misuse tools, execute unexpected code, cascade across systems, exploit user trust, or continue outside the intended task.

Tool Misuse and Exploitation

SeverityHighConfidenceHighStatusConcern

SKILL.md

**recover (emergency drain — sells everything, sweeps sol)** ... **vamp all (drain wallets — sells tokens, closes accounts, sweeps sol)**

The skill documents API operations that can sell all tokens, close accounts, sweep SOL, and move wallet funds. The artifacts do not pair these high-impact operations with mandatory human approval, amount limits, destination allowlists, or recovery safeguards.

User impactIf an agent invokes the wrong endpoint or uses the wrong wallet list or destination, the user could lose control of funds or liquidate positions unintentionally.

RecommendationUse only with explicit per-transaction confirmation, low-balance wallets, strict destination allowlists, spend limits, and revocable/scoped API keys if the provider supports them.

Rogue Agents

SeverityMediumConfidenceHighStatusConcern

examples.md

if (currentMultiplier >= targetMultiplier) { ... "sell_percentage": 100 ... } ... // poll every 30 seconds
setInterval(monitorAndSell, 30_000)

A documented copy-paste example runs a continuing monitor loop that can automatically sell 100% of matching positions. It is an example rather than installed code, but it shows an intended autonomous trading pattern.

User impactA copied or agent-generated workflow could keep trading in the background and sell positions without a fresh human decision for each trade.

RecommendationRequire explicit user approval before each sell or transfer, set maximum duration and maximum trade size, and ensure any background job has a visible stop command.

Agentic Supply Chain Vulnerabilities

SeverityLowConfidenceMediumStatusNote

metadata

Source: unknown; Homepage: none ... No install spec — this is an instruction-only skill.

The registry-level source and homepage are not populated even though the skill directs users to a financial API and requires a powerful API key. There is no executable code in this package, but provenance matters for financial automation.

User impactUsers may have less registry-level assurance that the skill package and API destination are the intended, verified provider.

RecommendationInstall only after independently verifying the Gank service, repository, publisher identity, and API endpoint.

Permission boundary

Checks whether tool use, credentials, dependencies, identity, account access, or inter-agent boundaries are broader than the stated purpose.

Identity and Privilege Abuse

SeverityHighConfidenceHighStatusConcern

skill.json

"source": "GANK_API_KEY env or skills.entries.gank.apiKey", "purpose": "API authentication", "required": true ... "API keys start with pb_ and authenticate all requests."

The skill requires a secret API key that authenticates every request to the trading and wallet-management API. That credential is powerful because the same API surface includes wallet transfers, sells, drains, launches, and bot sessions.

User impactAnyone or any agent action with access to the key may be able to operate the user’s Gank account and wallets through the API.

RecommendationDo not place the API key in broad model context. Prefer a restricted or temporary key, revoke it after use, keep only limited funds in connected wallets, and ensure the registry metadata clearly declares the required credential.

Sensitive data protection

Checks for exposed credentials, poisoned memory or context, unclear communication boundaries, or sensitive data that could leave the user's control.

Insecure Inter-Agent Communication

SeverityMediumConfidenceHighStatusNote

SKILL.md

base url: `https://gank.dev/api/v2` ... **list your wallets** `GET /wallets/user` ... **positions (all token holdings)** `GET /user/positions`

The skill sends wallet inventory, balances, positions, trading actions, token metadata, and related financial data to an external provider API. This is expected for the stated trading-terminal purpose, but it is sensitive.

User impactThe provider can receive or process information about wallets, holdings, trading behavior, and token launches.

RecommendationVerify the provider and its privacy/security posture before connecting real wallets or sharing sensitive trading data.