ShieldBot BNB Chain Security Scanner
Security checks across static analysis, malware telemetry, and agentic risk
Overview
This is a coherent blockchain security scanner that discloses its external API use and does not show credential collection, transaction signing, persistence, or destructive behavior.
Before installing, be comfortable with sending the listed scan inputs to ShieldBot's API. Avoid sharing private keys, seed phrases, passwords, or unrelated personal information, and only override the API base URL if you trust the destination.
Static analysis
No static analysis findings were reported for this release.
VirusTotal
VirusTotal findings are pending for this skill version.
Risk analysis
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
The agent may run local Python commands when you ask it to scan or check something; unusual input should not be blindly treated as shell syntax.
The skill relies on local command execution of a Python client with user-supplied parameters. This is central to the scanner's purpose, but command arguments should be handled safely.
When the user triggers a command, run the corresponding shell command. Replace `{baseDir}` with the skill's install directory.Use the skill for explicit scan/check requests, and ensure the agent passes addresses, URLs, and questions as escaped arguments.
ShieldBot can receive information about wallets, pending transaction details, URLs being checked, and security questions you ask.
The artifacts clearly disclose that user-provided wallet, transaction, URL, and question data is sent to an external API for analysis.
This skill sends data to ShieldBot's public API at `api.shieldbotsecurity.online`... Transaction parameters... Wallet addresses... URLs... Free-text questions
Do not include seed phrases, private keys, passwords, or unrelated personal data in questions or transaction details sent through this skill.
Installing the dependency will fetch Python package code in the normal way for a Python-based skill.
The skill requires a standard Python package install step. This is expected for its HTTP client and the requirement is narrow, but it still depends on the Python package supply chain.
Install the `requests` library before first use: `pip install -r "{baseDir}/requirements.txt"`Install dependencies from a trusted package index and review requirements.txt if you need strict supply-chain control.