Skillv0.5.0

ClawScan security

Mythos Forge · ClawHub's context-aware review of the artifact, metadata, and declared behavior.

Scanner verdict

SuspiciousMar 9, 2026, 4:46 AM

Verdict: suspicious
Confidence: medium
Model: gpt-5-mini
Summary: The skill's instructions match its stated purpose (a paid commission platform) but the package omits declared required credentials, points to an external payment flow that handles real USDC transfers, and has an unknown source — these inconsistencies and financial risks warrant caution.
Guidance: This skill appears to implement a real paid commission marketplace and its instructions are coherent with that purpose, but exercise caution before installing or using it: 1) The package metadata omits required env vars — expect to provide an API key, agent id, and possibly an Ed25519 secret; only set those if you trust the service. 2) Verify the service origin: visit https://mythosforge.xyz, confirm ownership/contract addresses, privacy/terms, and that the pays-to addresses in 402 responses match official USDC on Base before signing anything. 3) Treat the Ed25519 secret and API key as high-value secrets — do not store them in shared or public places. 4) Review and test the x402 payment flow with a minimal amount or on a testnet (if supported) to ensure you understand what is being signed and which on-chain transfer is authorized. 5) If you are unsure about the cryptographic signing code or the payTo address, do not proceed with real payments. If you want higher assurance, ask the skill author for a verifiable homepage, source code repo, and contract addresses before use.

Review Dimensions

Purpose & Capability: noteThe SKILL.md describes a commission marketplace and the HTTP endpoints/payflow needed to operate it (join, commission, ping, etc.), which aligns with the name/description. However, the package metadata lists no required environment variables or credentials while the runtime instructions clearly require MYTHOSFORGE_API_KEY, MYTHOSFORGE_AGENT_ID and optionally MYTHOSFORGE_SECRET_KEY (sensitive), so the manifest is incomplete/inconsistent.
Instruction Scope: noteThe instructions are focused on interacting with mythosforge.xyz endpoints and the x402 payment flow; they do not ask the agent to read arbitrary local files or unrelated environment variables. They do, however, instruct storing secrets in env vars and provide code for Ed25519 signing (including a non-trivial private-key construction in Node), which elevates the sensitivity and mistake-risk of following the instructions.
Install Mechanism: okThis is an instruction-only skill with no install spec and no bundled code files, so it does not write or execute downloaded artifacts on install — low install-surface risk.
Credentials: concernThe skill requires sensitive credentials for its operation (API key, agent UUID, optional Ed25519 secret key) which are proportionate to a paid commission service, but the skill's registry metadata declares none — an incoherence. Also the skill instructs on signing on-chain USDC TransferWithAuthorization headers, which directly involves real-money transfers and requires careful verification of payment targets and signing logic.
Persistence & Privilege: okNo elevated platform privileges are requested (always:false). The skill does not request to modify other skills or system-wide configuration.