v1.0.0

Sovereign Liquidity Sniffer

ReviewClawScan verdict for this skill. Analyzed May 1, 2026, 6:27 AM.

Analysis

This paid trading skill does not request credentials or local access, but it makes strong real-time market-data claims that are not supported by any installable or reviewable implementation artifacts.

GuidanceBefore installing, verify that the publisher can actually provide the claimed OKX/Binance orderbook data and millisecond analysis. The artifacts shown here do not expose dangerous local permissions, but they also do not substantiate the paid financial-trading capability being advertised.

Findings (2)

Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.

Abnormal behavior control

Checks for instructions or behavior that redirect the agent, misuse tools, execute unexpected code, cascade across systems, exploit user trust, or continue outside the intended task.

Human-Agent Trust Exploitation

SeverityMediumConfidenceHighStatusConcern

SKILL.md

"This skill provides an autonomous scanner" ... "Institutional-grade L2 Orderbook Imbalance" ... "To fund the 24/7 high-frequency data ingestion required for millisecond accuracy."

The skill asks for a paid fee while making strong financial-market and real-time data claims, but the provided artifact set contains only this instruction text and no reviewable implementation or declared capability that would substantiate the scanner.

User impactA user or agent could over-trust the skill's advertised trading intelligence or pay for a capability that is not evidenced by the supplied artifacts.

RecommendationTreat the market-data and performance claims as unverified; install only if the publisher provides reviewable implementation details, data-source documentation, and clear limits on what the skill can actually do.

Agentic Supply Chain Vulnerabilities

SeverityLowConfidenceHighStatusNote

metadata

Source: unknown; Homepage: none; Install specifications: No install spec; Code file presence: No code files present — this is an instruction-only skill.

For a skill claiming external exchange data ingestion and millisecond scanning, there is no source, homepage, install mechanism, or code to review; this is a provenance and reviewability gap rather than evidence of hidden execution.

User impactUsers have little basis to verify who provides the data, how the claimed service works, or whether the paid feature is legitimate.

RecommendationPrefer a version with publisher provenance, documentation, and reviewable code or a clearly described external service contract.