ClawHub
Skill flagged — suspicious patterns detected

ClawHub Security flagged this skill as suspicious. Review the scan results before using.

SUPAH DeFi Optimizer

v1.3.0

DeFi yield optimization, impermanent loss tracking, and portfolio management for Base blockchain. Find the best yields, monitor LP positions, and optimize De...

0· 72·1 current·1 all-time
by@supah-based
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Pending
View report →
OpenClawOpenClaw
Suspicious
medium confidence
Purpose & Capability
Name/description, API endpoints, and bundled index.js align with a DeFi optimizer for Base. Requiring node is expected. Requiring curl (declared in SKILL.md) is unnecessary given the included index.js uses Node's https — this is a minor mismatch but not proof of malicious intent. The SUPAH_API_BASE env var is a reasonable override for the API base URL.
!
Instruction Scope
SKILL.md and index.js only call the SUPAH API for wallet/position data — no file system or secret harvesting. However, SKILL.md specifies an automatic x402 micropayment model and embeds a payTo address; the agent's 'x402-compatible HTTP client pays automatically' implies the skill will trigger value transfers on each call. That is out-of-band behavior (economic transfers) that users should treat as a risk. Also, while SKILL.md metadata restricts outbound host to api.supah.ai, the code honors SUPAH_API_BASE if set — a maliciously set env var could redirect traffic to another host.
Install Mechanism
There is no download/install script; this is instruction-only with a small node script included. Nothing in the install surface writes arbitrary archives or executes remote installers. Risk from install mechanism is low.
Credentials
The skill only requests one env var (SUPAH_API_BASE) and no secrets, which is proportionate. Caveat: SUPAH_API_BASE can be used to point the skill at any endpoint if the user sets it, so ensure it's set only to the official API. The embedded x402 payTo address is not a secret but encodes where user funds will be sent — this is a non-credential risk (financial outflow) and should be acknowledged.
Persistence & Privilege
The skill does not request always:true, does not modify other skills, and has no system config paths. It can be invoked autonomously (platform default), which combined with the micropayment behavior increases the blast radius if the agent is allowed to act without limits.
What to consider before installing
This skill appears to implement the described DeFi features, but note two practical risks before installing: (1) Each call triggers an x402 micropayment to the embedded address (check and accept the payTo address and costs; set limits). (2) The SUPAH_API_BASE env var can override the API host — only set it to a trusted URL (default is https://api.supah.ai). Recommended steps: verify the publisher (look up the GitHub repo or the official supah.ai site), run the included index.js in a sandbox to inspect responses, restrict agent autonomy or set a per-call budget so the agent cannot make many paid calls automatically, and avoid providing private keys or wallet secrets to this skill. If you rely on a corporate or controlled environment, have an operator review the payTo address and x402 client behavior first.

Like a lobster shell, security has layers — review code before you run it.

latestvk97630mzp3cr7w5jd4es7rfsc583dwm8

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Runtime requirements

🔄 Clawdis
Binscurl, node
EnvSUPAH_API_BASE

Comments