Skill flagged — suspicious patterns detected
ClawHub Security flagged this skill as suspicious. Review the scan results before using.
Okx Onchain Gateway
v2.2.10Use this skill to 'broadcast transaction', 'send tx', 'estimate gas', 'simulate transaction', 'check tx status', 'track my transaction', 'get gas price', 'ga...
⭐ 0· 584·7 current·8 all-time
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
Capability signals
These labels describe what authority the skill may exercise. They are separate from suspicious or malicious moderation verdicts.
OpenClaw
Benign
high confidencePurpose & Capability
The skill claims to provide gas estimation, simulation, broadcasting and order tracking across many chains and the SKILL.md strictly routes the agent to an onchainos CLI that implements those operations. There are no unrelated env vars, binaries, or config paths requested that would be inappropriate for this purpose.
Instruction Scope
The runtime instructions tell the agent to fetch GitHub release metadata, download an installer script and checksums, verify SHA256, run the installer, and use the installed onchainos binary. The SKILL.md also directs reading its own YAML frontmatter for version comparison and to suppress routine command output to the user. Those actions are within the scope of installing and invoking a CLI, but the suppression directive could hide verbose output that a user might want to see when troubleshooting.
Install Mechanism
There is no bundled code; the skill's installer flow downloads and executes an installer script and binaries from raw.githubusercontent.com and GitHub releases. Downloading and executing remote installers is necessary here but is the highest-risk install pattern available—mitigations in the instructions (checksum verification) are present, but you should verify the release repo and checksums before running installers.
Credentials
The skill does not request any environment variables, credentials, or config paths. The SKILL.md mentions an optional personal API key and a .env file as an optional mitigation for rate limits, which is reasonable and optional; nothing requests unrelated secrets.
Persistence & Privilege
always is false and the skill does not request elevated platform privileges. The installer will write a binary to local disk (e.g., ~/.local/bin or a Windows path), which is expected for a CLI but not excessive.
Assessment
This skill is coherent: it acts as a thin wrapper that installs and uses the okx/onchainos CLI hosted on GitHub. The main security consideration is the installer flow: it downloads and executes a script/binary from GitHub releases. Before installing, verify the GitHub repository is the official okx/onchainos-skills repository, inspect the install script if possible, and confirm checksum values match the downloaded binary. Consider installing the CLI manually (or reviewing the installer script) rather than allowing automated execution, and avoid using this skill with high-value wallets until you have validated the binary and checksum. If you rely on private API keys, prefer creating and using a personal key (store it in a .env file excluded from version control) rather than any shared key referenced in the docs.Like a lobster shell, security has layers — review code before you run it.
latestvk97cda95hvc5dwhq3h17tjmw6984zwxx
License
MIT-0
Free to use, modify, and redistribute. No attribution required.