Jubilee Skill, By Jubilee Labs
SuspiciousAudited by ClawScan on May 10, 2026.
Overview
This crypto treasury skill asks for wallet private-key access and can move funds, but the reviewed package contains only instructions with no runnable code/provenance or clear transaction safeguards.
Do not use this with a valuable wallet as provided. First verify the full source code, package provenance, contract addresses, and transaction logic; test only on testnets or an isolated low-balance wallet; require manual approval for every approval, deposit, withdrawal, and donation; and avoid storing production private keys in plaintext.
Findings (4)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
If used with a real wallet, the agent or any executed tool using that key could approve spending or transfer funds irreversibly.
The skill expects access to a plaintext blockchain private key, while the registry metadata declares no primary credential. A private key gives full signing authority over the wallet.
Ensure wallet exists at: ~/.openclaw/workspace/setup_wallet_dir_new/wallets/agent_wallet.json ... { "privateKey": "0xYOUR_PRIVATE_KEY_HERE" }Use only an isolated, low-balance wallet or testnet wallet; avoid plaintext production keys; require explicit human approval for every transaction; and declare the wallet credential requirement clearly.
A mistaken or hijacked instruction could send assets to the wrong address, over-withdraw funds, or create risky token allowances.
The documented workflow can withdraw and transfer crypto to an arbitrary recipient address, and other sections describe token approvals and deposits, but the artifacts do not define confirmation, limits, allowlists, or safety checks.
`npm run donate-yield <amount> <recipient_address> [chain]` ... `Withdraws specified amount from jUSDi` ... `Transfers to recipient address`
Add mandatory human confirmation, recipient allowlists, maximum spend limits, dry-run previews, contract/address verification, and explicit checks that withdrawals do not touch principal.
Users cannot verify what code would actually sign transactions or whether the npm commands resolve to trusted, intended scripts.
The reviewed artifact provides no installation path or runnable package even though SKILL.md documents npm-run commands for financial operations; the implementation and wallet-handling code cannot be reviewed.
No install spec — this is an instruction-only skill.
Provide the complete source package, package/lock files, pinned dependencies, verified contract addresses, and an auditable install mechanism before using this with real funds.
Users or agents could over-trust the treasury strategy and underestimate smart-contract, market, liquidity, or operational risks.
The financial framing makes strong sustainability claims around yield without corresponding risk discussion in the provided artifact.
transforming agents from mortal (finite burn rate) to immortal (sustainable yield) ... If `Yield ≥ Burn Rate → Agent Lives Forever`
Treat the wording as marketing, not a guarantee; require independent risk review and disclose DeFi risks clearly.