Kraken
ReviewAudited by ClawScan on May 1, 2026.
Overview
The skill appears purpose-aligned for read-only Kraken portfolio queries, but users should notice that it uses Kraken API credentials and external Python dependencies.
This looks like a coherent Kraken account query skill. Before installing, create a least-privilege Kraken API key, do not grant trading or withdrawal rights unless separately needed, protect any .env file containing the key and secret, and be deliberate when requesting raw account-history commands.
Findings (3)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
The agent can retrieve and display Kraken balances, trade history, ledgers, staking positions, and related account details when the skill is used.
The skill requires Kraken API credentials with account-data permissions. This is expected for portfolio and staking queries, but it grants access to sensitive financial account information.
export KRAKEN_API_KEY="your_api_key" ... export KRAKEN_API_SECRET="your_api_secret" ... API Key Permissions Required ... Query Funds ... Earn
Use a Kraken API key limited to the permissions needed by this skill, avoid granting trading or withdrawal permissions, and store the key/secret securely.
A broad or mistaken request could cause more detailed account information to be shown than the user intended.
The wrapper exposes a raw API pass-through path in addition to high-level summaries. The documented raw commands appear query-oriented and purpose-aligned, but they can return detailed private account data.
api <command> [args] - Run any kraken_api.py command directly
Prefer the high-level summary commands for routine use and ask for raw API commands only when you specifically need the detailed account output.
Installing dependencies later could pull newer package versions than the author tested.
The skill depends on external Python packages with minimum-version constraints rather than exact pins. These dependencies are expected for a Kraken API wrapper, but version drift can affect reproducibility.
python-kraken-sdk>=1.2.0 python-dotenv>=1.0.0
Install from trusted package indexes and consider pinning or reviewing dependency versions before use in a sensitive financial-account context.