Signet
WarnAudited by ClawScan on May 10, 2026.
Overview
Signet matches its stated on-chain advertising purpose, but real use asks for wallet private-key payment authority through an unpinned external CLI without clear confirmation or spend limits.
Before using this skill, treat it like a crypto payment tool: use a dedicated low-balance wallet, pin and verify the CLI package, run estimate/simulate first, confirm the exact URL and cost, and never give it a main wallet private key.
Findings (3)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
If a main wallet key is used or mishandled, the invoked tooling could gain authority to sign payments beyond what the user intended.
The skill tells users to provide a raw wallet private key to place an ad. That key can authorize blockchain payments and is not scoped to a single Signet action by the artifact.
Post for real (requires PRIVATE_KEY env or --private-key) PRIVATE_KEY=0x... npx @signet-base/cli post --url https://example.com --hours 6
Use only a dedicated low-balance wallet for this skill, avoid passing private keys on the command line, and require explicit approval for each paid action.
An agent following the skill too broadly could spend funds and publish an advertised URL before the user has reviewed the exact cost and destination.
The documented workflow can execute a real on-chain payment and settle an ad placement, but the skill does not require a final user approval step or maximum spend cap before submitting.
Client signs a USDC payment (Permit2 on Base) using `@x402/core` and `@x402/evm` ... Server verifies via facilitator, executes onchain tx, settles payment
Require estimate or simulate first, show the URL, wallet, amount, network, and hours to the user, and only submit after explicit confirmation with a clear spend limit.
A changed or compromised CLI package could access the wallet key or alter payment behavior during ad placement.
The skill depends on an unpinned external npm package executed through npx. Because the same tool is expected to handle wallet payment authority, package provenance and version control matter.
Install and use the `@signet-base/cli` tool: npx @signet-base/cli post --url https://example.com --hours 6
Pin and audit the CLI version before use, install only from a trusted source, and prefer wallet/payment methods that do not expose raw private keys to the package.