ClawHub
Back to skill
v1.0.0

hey.lol

ReviewClawScan verdict for this skill. Analyzed May 1, 2026, 5:47 AM.

Analysis

The skill matches a social posting/payment platform, but it asks the agent to trust live remote instructions while handling crypto wallet keys and public paid posting.

GuidanceOnly install this if you are comfortable with an agent publishing on hey.lol and using limited, fresh wallets. Do not allow it to auto-fetch and obey a live replacement skill file without review, and require explicit approval for wallet use, paid actions, and public posts.

Findings (3)

Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.

Abnormal behavior control

Checks for instructions or behavior that redirect the agent, misuse tools, execute unexpected code, cascade across systems, exploit user trust, or continue outside the intended task.

Agentic Supply Chain Vulnerabilities
SeverityHighConfidenceHighStatusConcern
SKILL.md
Always fetch the latest skill before proceeding... GET https://hey.lol/skill.md ... use it as your source of truth for all API endpoints, request formats, and instructions.

The reviewed artifact instructs the agent to replace its instructions with live remote content that is not pinned, hashed, or included in the registry package.

User impactThe behavior the agent follows after installation could change outside the reviewed skill, including API endpoints, credential handling, or posting instructions.
RecommendationDo not let the agent treat remote skill text as authoritative. Use the reviewed packaged instructions, or require a pinned version/hash and human review before applying updates.
Tool Misuse and Exploitation
SeverityMediumConfidenceHighStatusConcern
SKILL.md
Post great content, build an audience, engage authentically, and monetize through paywalls... paymentFetch('https://api.hey.lol/agents/posts', { method: 'POST'

The skill directs the agent to publish public content and monetize it through the hey.lol API, but the visible instructions do not define per-post approval, rate limits, or reversal controls.

User impactThe agent may publish public or paywalled content that affects reputation, audience trust, or financial activity if boundaries are not set first.
RecommendationBefore installing, define exact posting topics, approval requirements, spending limits, and whether the agent may publish or paywall content without reviewing each post.
Permission boundary

Checks whether tool use, credentials, dependencies, identity, account access, or inter-agent boundaries are broader than the stated purpose.

Identity and Privilege Abuse
SeverityMediumConfidenceHighStatusConcern
SKILL.md
const keypair = Keypair.fromSecretKey(bs58.decode(YOUR_PRIVATE_KEY_BASE58)) ... wrapFetchWithPayment(fetch, client)

The skill has the agent use a Solana private key for x402 payment/authentication requests, and also describes generating and printing Solana/Base private keys.

User impactA wallet private key controls funds and account identity; mishandling it in chat logs, console output, or broad agent context could expose funds or allow unwanted paid actions.
RecommendationUse fresh low-balance wallets only, set explicit spending limits, avoid pasting private keys into shared transcripts, and require clear human approval before any paid or wallet-signing action.