ClawHub
Skill flagged — suspicious patterns detected

ClawHub Security flagged this skill as suspicious. Review the scan results before using.

Bot-to-Bot Arbitrage Framework: Multi-Bot Coordination with Trust Verification

v1.3.1

Bot-to-Bot Arbitrage Framework: Multi-Bot Coordination with Trust Verification. Build a multi-bot arbitrage coordination framework with marketplace discovery...

0· 92·0 current·0 all-time
by@mirni
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
Capability signals
CryptoRequires walletCan make purchasesRequires sensitive credentials
These labels describe what authority the skill may exercise. They are separate from suspicious or malicious moderation verdicts.
VirusTotalVirusTotal
Benign
View report →
OpenClawOpenClaw
Suspicious
medium confidence
Purpose & Capability
The skill's name and description match a framework for multi-bot arbitrage and coordination; requesting an agent signing key (Ed25519) is plausibly relevant for signed messages / identity in a coordination protocol. However, the skill is instruction-only (no code) yet declares a required runtime credential — unusual for a guide that also states the GreenHelix sandbox needs no API key.
!
Instruction Scope
SKILL.md promises working Python and curl examples and explicitly lists AGENT_SIGNING_KEY as a referenced credential. Because this is an instruction-only skill with the primary credential provided to the agent, there's a risk the instructions will direct the agent to use the private signing key at runtime (sign requests, produce claims, or broadcast signed messages). The file also mentions exchange APIs and escrow flows — if example code references other API keys or instructs the agent to access system files or transmit keys, that would be out-of-scope for a simple guide. The visible portion does not show explicit file reads, but the presence of a required private key is a red flag for sensitive runtime actions.
Install Mechanism
No install spec and no bundled code — the skill is instruction-only, which minimizes automatic code being written to disk or executed. This is the lowest-risk install footprint.
!
Credentials
The only declared required credential is AGENT_SIGNING_KEY (a private Ed25519 key). Requiring a private signing key at agent runtime is sensitive and may be disproportionate for a read-only educational guide. If the intent is only to show how to sign locally, the skill should not require the key to be provided to the agent. Additionally, the guide references interacting with exchanges and escrow but does not declare other credentials (exchange API keys) — if examples assume those keys exist, the skill omits required env vars or expects the agent to request/access them without declaration.
Persistence & Privilege
always is false and there is no install that modifies agent configuration. Autonomous invocation is allowed (platform default) but not combined with always:true or extra privileges, so there is no elevated persistence requested by this skill.
What to consider before installing
Treat this as a suspicious-but-plausible technical guide. Before installing or enabling it: (1) Do NOT expose your private signing key (AGENT_SIGNING_KEY) to a skill unless you fully trust its source; prefer using local signing tools or hardware wallets. (2) Ask the publisher for source code or a homepage and verify the GreenHelix sandbox URL and owner identity. (3) Inspect the full SKILL.md for any examples that read other env vars or system files (exchange API keys, SSH keys, ~/.ssh, etc.) that weren't declared. (4) If you must experiment, run the guide in an isolated environment with testnet accounts and throwaway credentials. (5) If the skill requires signing real trades or escrow operations, require an out-of-band review and never let the skill sign or transmit private keys autonomously.

Like a lobster shell, security has layers — review code before you run it.

ai-agentvk976p5rcp04sf42xhhb9kynen184w721arbitragevk976p5rcp04sf42xhhb9kynen184w721coordinationvk976p5rcp04sf42xhhb9kynen184w721greenhelixvk976p5rcp04sf42xhhb9kynen184w721guidevk976p5rcp04sf42xhhb9kynen184w721latestvk976p5rcp04sf42xhhb9kynen184w721multi-botvk976p5rcp04sf42xhhb9kynen184w721openclawvk976p5rcp04sf42xhhb9kynen184w721trading-botvk976p5rcp04sf42xhhb9kynen184w721

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Runtime requirements

EnvAGENT_SIGNING_KEY
Primary envAGENT_SIGNING_KEY

Comments