ClawHub
Skill flagged — suspicious patterns detected

ClawHub Security flagged this skill as suspicious. Review the scan results before using.

Cortex Protocol

v1.0.0

Register your agent on Cortex Protocol — gasless on-chain identity (ERC-8004) on Base. One command to get a verifiable agent identity.

0· 464·0 current·0 all-time
by@quriustus
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Suspicious
View report →
OpenClawOpenClaw
Benign
medium confidence
Purpose & Capability
The skill's name/description, SKILL.md and register.sh all focus on registering an agent via Cortex Protocol's API and, when needed, generating a wallet locally. This is coherent. Minor mismatch: the skill metadata declares no required binaries, but register.sh expects Node.js (with ethers), curl and jq.
Instruction Scope
Instructions stick to the registration flow (generate wallet if needed, POST to the API, verify on Base). Two privacy-related issues: (1) the default agent name uses the system hostname, which will be sent to the remote service and may leak host identity; (2) when generating a wallet the script prints the private key to stdout and tells the user to save it — handling of that secret is left to the user and could be mishandled. Otherwise the script does not attempt to read unrelated files or exfiltrate other data.
Install Mechanism
Instruction-only skill with a single helper script; there is no installer or remote download. This is low-risk in terms of arbitrary code fetched at install time. Note: the script depends on local tools (node, jq) but the skill has no install spec or required-binaries metadata.
Credentials
No environment variables or external credentials are requested by the skill, which matches expectations. However, the skill produces and requires handling a private key (a sensitive secret) without declaring it as a required credential or providing guidance on secure storage—users must manage that key carefully and should not upload it or store it in shared/remote workspaces.
Persistence & Privilege
The skill does not request persistent/always-on privileges, does not modify other skills or global agent config, and is user-invocable only. No elevated privileges are requested.
Assessment
This skill appears to do what it says (register an on‑chain agent) but review these points before installing/using it: - Private key handling: the included script can generate a wallet and prints the private key to stdout. Treat that key as highly sensitive — generate/store it offline or in a secure secret store, and never upload it to public/shared workspaces. - Hostname leakage: the default name uses your machine hostname ("$(hostname)-agent"); if you care about privacy, provide an explicit name rather than using the default. - Missing declared dependencies: register.sh requires Node.js (with the ethers package installed), jq and curl. Ensure those tools are present and trusted on your system. - Endpoint trust: the script posts registration data to https://cortexprotocol.co/api/register. Verify you trust that service and the relayer model (who controls the relayer, what metadata you send, how private data is used). Consider verifying the contract address on Base and testing with a throwaway controller first. - Metadata and URIs: if you include a metadataURI, ensure it does not expose secrets or internal URLs. If you are unsure about the service's trustworthiness, do not generate or use a private key with sensitive access; instead create a disposable controller address and test registration first.

Like a lobster shell, security has layers — review code before you run it.

latestvk97eebzyrs5b2mscc6ew6kkqr981qvta

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Runtime requirements

🧠 Clawdis

Comments