Skillv0.2.3

ClawScan security

Teller MCP – Borrow USDC & Altcoins (no margin calls) · ClawHub's context-aware review of the artifact, metadata, and declared behavior.

Scanner verdict

BenignFeb 16, 2026, 2:32 AM

Verdict: benign
Confidence: high
Model: gpt-5-mini
Summary: The skill is internally consistent: it bundles a Node MCP server that calls Teller's public delta-neutral API, and the code, instructions, and dependencies match the stated purpose.
Guidance: This skill appears to do what it claims, but review and take simple precautions before running it: 1) Inspect the included source (already present) and confirm you trust the build dependencies; 2) Do not provide private keys or secrets — the skill builds unsigned on-chain transactions and will forward any wallet addresses you supply to the configured Teller API (privacy risk); 3) Run npm install and npm audit in an isolated environment (or sandbox/container) and pin/verify dependency versions if you will run this in production; 4) If exposing the MCP via mcporter/OpenClaw, restrict which agents/users can invoke it to avoid unintended queries or transaction-generation for third-party wallets; 5) If you need higher assurance, consider auditing @modelcontextprotocol/sdk and any transitive dependencies before deployment.

Review Dimensions

Purpose & Capability: okName/description, SKILL.md instructions, and the included TypeScript source all align: this is an MCP server that queries Teller's public delta-neutral and lending endpoints and exposes six MCP tools. No unrelated credentials or binaries are requested.
Instruction Scope: noteRuntime instructions are straightforward (npm install, build, npm start) and the tools accept wallet addresses and other parameters which are forwarded to the Teller API. Be aware that wallet addresses and query parameters provided to the tools will be transmitted to the configured TELLER_API_BASE_URL (default production). The SKILL.md does not request or use private keys or other secrets.
Install Mechanism: noteThere is no platform install spec (instruction-only), but a Node project is included and requires running npm install which will fetch dependencies from npm. The package.json and package-lock.json show common dependencies (@modelcontextprotocol/sdk, zod) and devDeps; no custom downloads or opaque URLs are present in the bundle.
Credentials: noteNo required environment variables or secrets are declared. Two optional env vars (TELLER_API_BASE_URL, TELLER_API_TIMEOUT_MS) are used to configure the client; these are proportionate. Inputs such as walletAddress are expected by the API and will be transmitted — a privacy consideration but expected for the tool's function.
Persistence & Privilege: okalways:false and no other elevated privileges requested. The SKILL.md instructs adding a transport entry for mcporter/OpenClaw so agents can call the tools — exposing these tools to agents is intended behavior but review who can call the registered transport.