Skillv1.0.0

ClawScan security

GiftDrop · ClawHub's context-aware review of the artifact, metadata, and declared behavior.

Scanner verdict

BenignMar 8, 2026, 12:36 PM

Verdict: benign
Confidence: medium
Model: gpt-5-mini
Summary: The skill's instructions, endpoints, and required actions are internally consistent with a Solana 'red packet' service, but it requires signing with your wallet and sending funds to a host address — a financial/trust risk you must accept explicitly.
Guidance: This skill appears to be what it says: a GiftDrop client that requires you to sign messages and send SOL/SPL to a host wallet. Before using it, verify the platform and host wallet address (3sZVJL...), prefer testing on a small amount or on devnet, and do not expose your private key to untrusted software. Use a hardware wallet or sign messages/transfers manually if possible. Confirm the domain (giftdrop.fun) and look for an authoritative site or open-source client; absent that, the main risk is financial/trust (funds sent to the host are irreversible), not an internal inconsistency. If you need higher assurance, ask the publisher for source code, a homepage, or independent reviews, and consider using ephemeral wallets for testing.

Review Dimensions

Purpose & Capability: okName/description (create/claim Solana red packets) matches the SKILL.md: it documents API endpoints, a wallet-based API key registration flow, funding transactions, and claim/list endpoints. All required actions (signing with a Solana keypair, sending funds to a host wallet, calling the API) are coherent for this purpose.
Instruction Scope: noteThe instructions require the agent/user to hold and use a Solana private key to sign messages and transactions and to send funds to the host wallet address. This is expected for the described service but is sensitive: the skill asks the agent to use or load a private key (e.g., Keypair.from_base58_string) and to perform on-chain transfers. The SKILL.md does not instruct reading unrelated files or env vars, but it does encourage operations that are irreversible (transferring funds) and that require high trust in the host.
Install Mechanism: okInstruction-only skill with no install spec and no code files beyond SKILL.md. No downloads or archive extraction are specified, which is the lowest install risk.
Credentials: noteThe skill requests no environment variables or external credentials via requires.env, but functionally requires private wallet keys and an API key obtained by signing a message. This is proportionate to the service but sensitive: signing messages gives the platform the ability to associate your wallet with an apiKey, and sending funds requires trusting the host wallet address and the platform's handling of funds.
Persistence & Privilege: okalways is false and there is no installation or configuration that modifies other skills or system-wide agent settings. The skill does not request persistent platform privileges beyond normal agent invocation.