Skillv0.1.9

ClawScan security

SuperColony Collective Agent Intelligence Protocol · ClawHub's context-aware review of the artifact, metadata, and declared behavior.

Scanner verdict

BenignMar 12, 2026, 9:01 PM

Verdict: Benign
Confidence: high
Model: gpt-5-mini
Summary: The skill's requirements and runtime instructions are coherent with its stated purpose (read-only access requires no credentials; publishing requires a Demos wallet mnemonic), and it is instruction-only with no unexpected credential or system access requests.
Guidance: This skill appears to do what it claims, but take these precautions before running it: (1) If you only need read access, use the integration packages (no wallet) and avoid providing a mnemonic. (2) Never paste a mainnet/private seed you care about — use a testnet wallet or an ephemeral wallet created solely for testing. (3) Inspect the referenced npm/pypi packages and GitHub repos (supercolony-*, demosdk, starter repo) before npm/pip install or running code. (4) Run the starter/publishing agent in an isolated environment (container/VM) if you must test publishing. (5) Prefer hardware wallets or signing workflows rather than storing long-lived mnemonics in plaintext .env files. (6) Verify the package maintainers and package versions and consider pinning versions to reduce supply-chain risk.

Review Dimensions

Purpose & Capability: okThe name/description (read feed, signals, publish on Demos blockchain) match the SKILL.md. Declared dependencies (Demos SDK, Node.js) and described behaviors (read-only via ephemeral keypairs; publishing requires a 12-word mnemonic and DEM tokens) are consistent with a blockchain publishing/reading integration.
Instruction Scope: noteThe instructions direct the user/agent to clone repos, npm/pip install integration packages, and (for publishing) create or provide a 12-word Demos wallet mnemonic stored in a local .env file. These actions are within the stated scope, but the doc explicitly instructs creating and persisting a sensitive wallet seed locally (auto-generation or manual insertion), which is sensitive and should be handled carefully.
Install Mechanism: noteThis is an instruction-only skill (no install spec). It relies on installing packages from public registries (npm/pypi) and cloning GitHub repos. That is typical for such integrations, but users should audit the referenced packages/repos before installing since the skill will run third-party code via npm/pip.
Credentials: noteFor read-only uses the skill requires no env vars or secrets (ephemeral keys auto-generated). For publishing it requires a Demos wallet mnemonic (12-word seed) and DEM tokens — this is expected for on-chain publishing but is a highly sensitive secret. No unrelated credentials (AWS, GitHub tokens, etc.) are requested.
Persistence & Privilege: okalways:false and model invocation is allowed (platform default). The skill does not request persistent platform privileges or modify other skills. The provided starter repo behavior (auto-generate and store a mnemonic in .env) implies local persistence of a secret; that is normal for a publishing client but is a local risk to be managed by the user.