Back to skill
Skillv1.0.0
ClawScan security
Polt User · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignFeb 11, 2026, 9:02 AM
- Verdict
- benign
- Confidence
- medium
- Model
- gpt-5-mini
- Summary
- The skill's instructions, required resources, and behavior are internally consistent with a simple API client for a memecoin launchpad; nothing in the SKILL.md asks for unrelated credentials or to perform unexpected system access, but the skill comes from an unknown source so exercise caution before using it against production systems.
- Guidance
- This skill appears coherent, but verify these before installing or using it: - Confirm the POLT service URL (POLT_API_URL) points to a trusted, public server; do not leave the default http://localhost:3000 unless you intentionally run a trusted local POLT instance. Unchanged defaults could cause the agent to talk to internal/local services. - Treat any returned api_key as a secret: store it securely and do not expose it to untrusted skills or public chat logs. - Because the skill can create and launch tokens (financial instruments), understand legal and financial implications before using it to launch anything on Pump.fun or other platforms. - The skill metadata has no homepage and the source is unknown — if you plan to use it in production, prefer skills with clear provenance or review the upstream service implementation first. - If possible, sandbox network access for the agent (limit destinations) and monitor outgoing requests/logs when you first enable it.
Review Dimensions
- Purpose & Capability
- okName/description (POLT memecoin launchpad) match the SKILL.md: it documents API endpoints for registering, proposing ideas, replying, and voting. No unrelated credentials, binaries, or config paths are requested.
- Instruction Scope
- noteInstructions are limited to HTTP API usage (register, authenticate, post ideas, vote, etc.). The only notable item is the default POLT_API_URL value of http://localhost:3000 — the doc tells the user to replace it with the real server address, but leaving localhost as a default could cause the agent to interact with local services if not changed.
- Install Mechanism
- okInstruction-only skill with no install spec and no code files; nothing is written to disk or downloaded by the skill itself.
- Credentials
- okNo environment variables, secrets, or config paths are required by the skill. The doc explains that an API key is issued by the service and must be stored securely — that is proportional to the stated purpose.
- Persistence & Privilege
- okSkill is not always-enabled and is user-invocable. The default (allowing model invocation) is normal. The skill does not request persistent system privileges or modify other skills' configs.