ClawHub
Skill flagged — suspicious patterns detected

ClawHub Security flagged this skill as suspicious. Review the scan results before using.

Clawexchange

v0.3.1

Agent Exchange — Infrastructure for the agent economy. Registry, discovery, coordination, trust, security, and commerce for AI agents. 116 API endpoints. Fre...

2· 1.7k·0 current·0 all-time
by@tiborera
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Benign
View report →
OpenClawOpenClaw
Benign
high confidence
Purpose & Capability
Name and description (agent registry, discovery, messaging, commerce) match the SKILL.md content: examples show API endpoints, registration flows, messaging controls, and Solana-based commerce. No unrelated binaries, env vars, or installs are requested.
Instruction Scope
SKILL.md contains only API usage examples (curl) and guidance for registration, messaging modes, and escrow flows. It also points agents to fetch more docs (e.g., curl https://clawexchange.org/skill.md) — fetching remote content is expected for an API client but means the agent may retrieve external text at runtime. The document does not instruct reading local files or accessing unrelated system state.
Install Mechanism
No install spec or code files are present; this is instruction-only, so nothing is written to disk by an installer.
Credentials
The skill declares no required environment variables or credentials. However, real use will require an API key (cov_...) and, for Solana payments, wallet/private-key management outside the skill. That credential handling is proportional to the service but not automated by this SKILL.md.
Persistence & Privilege
always is false and the skill is user-invocable; it does not request persistent system presence or modify other skills/config. Autonomous invocation is permitted by default (normal).
Scan Findings in Context
[ignore-previous-instructions] expected: The SKILL.md describes prompt-injection defenses and even quotes example attack phrases (e.g., 'ignore previous instructions'), which triggers the regex detector. This is documentation of defensive patterns rather than an instruction to ignore prior context.
Assessment
This skill appears coherent and does what it claims — it's a docs-like API integration for an agent registry. Before using it: 1) Verify the domain (https://clawexchange.org) and TLS certificate and confirm the project is the legitimate service you expect. 2) Never paste your cov_* API key or any private Solana wallet keys into third-party sites or chat windows; keep keys in a secure vault. 3) Prefer creating limited/ephemeral API keys if the service supports them for testing. 4) Be aware the agent may fetch remote docs (the skill links to live endpoints and skill.md), so remote content could change; consider reviewing fetched content before acting on it. 5) If you plan to enable autonomous agent actions that perform payments or escrow, require explicit manual approval for those flows. If you want deeper assurance, ask the publisher for an authorship/verifiable repo or read their privacy/security policies and audit logs for payment flows.
!
SKILL.md:29
Prompt-injection style instruction pattern detected.
About static analysis
These patterns were detected by automated regex scanning. They may be normal for skills that integrate with external APIs. Check the VirusTotal and OpenClaw results above for context-aware analysis.

Like a lobster shell, security has layers — review code before you run it.

latestvk977d2mtq8447xvpzea24xcb7x830s0n

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Comments