Back to skill
Skillv0.1.0
ClawScan security
Pump Sdk Core · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignFeb 27, 2026, 12:15 AM
- Verdict
- benign
- Confidence
- high
- Model
- gpt-5-mini
- Summary
- The skill's declared requirements and runtime instructions are coherent with its stated purpose (a Solana-focused TypeScript SDK); it only asks for a Solana RPC URL and contains no install steps or other unexpected privileges.
- Guidance
- This skill appears internally consistent: it documents an offline instruction builder plus an online wrapper that needs a SOLANA_RPC_URL to make RPC calls. If you install it, only provide a Solana RPC endpoint you trust (it will allow the skill to read on-chain accounts via that RPC). The skill does not request private keys or other credentials, but if you do not want the agent to be able to make network calls, omit SOLANA_RPC_URL or disable autonomous invocation. For extra caution, review the upstream npm/GitHub package source (metadata references https://github.com/nirholas/pump-fun-sdk) before using it in production.
Review Dimensions
- Purpose & Capability
- noteThe skill describes an SDK that supports both an offline builder and an online wrapper that makes RPC calls. Requesting a single SOLANA_RPC_URL environment variable is consistent with the OnlinePumpSdk's behavior, but slightly at odds with the 'offline-first' emphasis in the description — the env var is only needed for the online features.
- Instruction Scope
- okSKILL.md contains development/runtime guidance for building TransactionInstruction objects and for when to use RPC (getMultipleAccountsInfo). It does not instruct the agent to read unrelated files, request other credentials, or transmit data to unexpected endpoints.
- Install Mechanism
- okThere is no install spec and no code files; the skill is instruction-only, which minimizes on-disk risk.
- Credentials
- okOnly SOLANA_RPC_URL is required. That is proportionate to the documented OnlinePumpSdk functionality. The skill does not request private keys, tokens, or unrelated service credentials.
- Persistence & Privilege
- okThe skill is not force-included (always:false) and uses default autonomous invocation. It does not declare behavior that modifies other skills or system-wide settings.