ClawHub
Skill flagged — suspicious patterns detected

ClawHub Security flagged this skill as suspicious. Review the scan results before using.

Clanker

v1.0.0

Deploy ERC20 tokens on Base using Clanker SDK. Create tokens with built-in Uniswap V4 liquidity pools. Supports Base mainnet and Sepolia testnet. Requires PRIVATE_KEY in config.

0· 1.7k·14 current·16 all-time
bySpiros Raptis@spirosrap
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Suspicious
View report →
OpenClawOpenClaw
Suspicious
medium confidence
Purpose & Capability
Name/description (deploy ERC20s on Base with integrated Uniswap V4 pools) align with included scripts (bash wrapper + Python deployment helper) and calls to Base RPC endpoints. Required binaries (curl, jq, python3) are reasonable for read-only operations and orchestration; the Python code uses web3 to craft/sign transactions which fits the deployment purpose.
!
Instruction Scope
SKILL.md and scripts instruct the user to create ~/.clawdbot/skills/clanker/config.json containing private_key values and the scripts read that file directly. While the README warns about not committing keys, the runtime instructions and included scripts will read private keys from disk and pass them into deploy.py for signing and RPC submission — a sensitive operation. The skill does not appear to read unrelated system files, nor does it post data to unexpected external endpoints, but it does reference clanker.world and multiple RPC endpoints; confirming those endpoints' legitimacy is important.
Install Mechanism
This is an instruction-only skill with bundled scripts—no external download/install spec. That reduces installation risk. The scripts do call pip to install web3 (recommended by the docs) but there is no automatic arbitrary remote code download from unknown servers in the install step.
!
Credentials
The skill requires private keys to function, but registry metadata lists no required env vars or config paths (Primary credential: none, Required config paths: none). In practice the SKILL.md and scripts require a config file with private_key entries in the user's home directory. This mismatch (sensitive credential required but not declared) and storing keys in a plaintext config file are notable concerns. Also SKILL.md recommends pip install web3 but the Python helper also requires eth-abi; the dependency guidance is incomplete.
Persistence & Privilege
The skill creates/reads a persistent config at ~/.clawdbot/skills/clanker/config.json to store private keys. always:false (no forced global presence) and the skill does not request to modify other skills or agent-wide settings. Persisting private keys on disk is functional for deployments but increases exposure if the file is not protected; this is a legitimate design choice but a security tradeoff.
What to consider before installing
Before installing or running this skill, consider the following: - Sensitivity of private keys: The scripts expect you to place private keys in ~/.clawdbot/skills/clanker/config.json in plaintext. Do NOT put your mainnet/private funds key there. Prefer a throwaway/test key for experimentation. - Use hardware wallets or remote signing where possible: If you need mainnet deployments, avoid storing raw private keys on disk; instead use a wallet provider, remote signer, or sign transactions offline. - Verify contract addresses and endpoints: The Python helper includes specific Clanker contract addresses and RPC endpoints; verify these against official Clanker documentation (e.g., clanker.world) before broadcasting transactions. Malicious or incorrect contract addresses could lead to loss. - Dependency completeness: The SKILL.md suggests 'pip install web3' but deploy.py also imports eth_abi (eth-abi). Install both packages or review the Python script before running. - Scope and provenance: The skill source/homepage is 'unknown'/none in registry metadata while SKILL.md references https://clanker.world. Lack of a clear upstream source reduces ability to verify authenticity—exercise caution. - Test first on Sepolia: Follow the provided testnet flow and use small amounts of test ETH to validate behavior before any mainnet use. - Run in an isolated environment: Consider running the scripts in a disposable VM/container and inspect logs and network traffic if you want extra assurance. If you want to proceed: create a dedicated ephemeral testnet key, verify the code (deploy.py and clanker.sh) yourself, ensure the config file is created with restrictive permissions (chmod 600), and do not reuse the key for other services. If you require higher assurance, ask the skill author or maintainers for repository/source verification and signed releases.

Like a lobster shell, security has layers — review code before you run it.

latestvk9703zbambtcskk2v3xz8pghnh80c5n2

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Runtime requirements

🪙 Clawdis
Binscurl, jq, python3

Comments