Back to skill
Skillv1.1.2
ClawScan security
Arcadia Finance · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignApr 23, 2026, 6:03 AM
- Verdict
- benign
- Confidence
- high
- Model
- gpt-5-mini
- Summary
- The skill's code, instructions, and requirements are consistent with a CLI wrapper that talks to Arcadia's remote MCP API to build unsigned DeFi transactions; nothing requested is disproportionate to that purpose.
- Guidance
- This skill appears internally consistent and acts as a thin CLI that forwards public addresses and unsigned tx params to Arcadia's MCP server. Before installing: (1) Verify the MCP endpoint and project (https://arcadia.finance, docs, GitHub) so you trust the remote server; (2) never provide private keys or paste secrets into tool arguments — sign transactions locally or via a trusted wallet-signing service as described; (3) consider testing on a small amount or a testnet first; (4) if you need stronger assurance, review the upstream source (repo, audits) for the MCP server and contracts referenced in contracts.md.
Review Dimensions
- Purpose & Capability
- okName/description (DeFi liquidity management) matches the provided CLI wrapper (arcadia.sh), the read/write operations, and the contracts list. Declared required binaries (curl, jq) are exactly what the script needs; no unrelated credentials or binaries are requested.
- Instruction Scope
- noteSKILL.md instructs the agent to run the included shell CLI which makes HTTP calls to a remote MCP endpoint and sends public wallet/account addresses and unsigned transaction parameters. This matches the stated purpose, but it does transmit transaction data to a remote server (the skill documents this and warns not to share private keys). The instructions do not ask the agent to read local secrets or unrelated system files.
- Install Mechanism
- okThere is no install spec (instruction-only plus a small bundled shell script). Nothing is downloaded or extracted from arbitrary URLs and no third-party packages are automatically installed.
- Credentials
- noteThe skill does not require credentials. It optionally honors ARCADIA_MCP_URL to override the MCP endpoint (documented in SKILL.md) though that env var is not listed as 'required' which is acceptable because it's optional. No secrets/keys are requested.
- Persistence & Privilege
- okalways is false and the skill does not request elevated or persistent platform privileges or modify other skills. Autonomous invocation is allowed (platform default) but not combined with other red flags.