Skill flagged — suspicious patterns detected
ClawHub Security flagged this skill as suspicious. Review the scan results before using.
Trading212 API
v1.0.0This skill should be used when the user asks to "connect to Trading 212", "authenticate Trading 212 API", "place a trade", "buy stock", "sell shares", "place market order",, "place pending order", "place limit order", "cancel order", "check my balance", "view account summary", "get positions", "view portfolio", "check P&L", "find ticker symbol", "search instruments", "check trading hours", "view dividends", "get order history", "export transactions", "generate CSV report", or needs guidance on Trading 212 API authentication, order placement, position monitoring, account information, instrument lookup, or historical data retrieval.
⭐ 2· 1.7k·4 current·4 all-time
byEngineering Manager @ Trading 212@tsvetelin-kulinski
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
OpenClaw
Suspicious
medium confidencePurpose & Capability
The skill's name and description match the instructions (Trading 212 API access, placing trades, account queries). However, the manifest declares no required environment variables or primary credential even though the SKILL.md repeatedly instructs the agent to read/use T212_API_KEY, T212_API_SECRET, T212_AUTH_HEADER, T212_BASE_URL, account-specific pairs, etc. The lack of declared credentials in the manifest is inconsistent with the skill's stated purpose.
Instruction Scope
The SKILL.md contains detailed runtime instructions for authentication, building Basic Auth headers, selecting LIVE vs DEMO, and making API requests — all within scope for a Trading 212 integration. It also instructs the agent to check for environment variables and to build/ask for credentials when missing. No instructions were found that ask the agent to read unrelated system files or transmit unrelated secrets, but the instructions do rely on environment variables being present or being provided at runtime.
Install Mechanism
This is an instruction-only skill with no install spec and no code files. That reduces surface risk because nothing is downloaded or written to disk by an installer.
Credentials
The SKILL.md expects multiple specific environment variables (T212_API_KEY, T212_API_SECRET, T212_AUTH_HEADER, T212_BASE_URL, and account-specific variants) appropriate for a Trading 212 integration. However, the skill manifest lists no required env vars and no primary credential. That mismatch prevents the platform or user from easily understanding what secrets the skill needs and from providing them securely. The requested variables themselves are proportional to the stated purpose, but the omission in metadata is a red flag.
Persistence & Privilege
The skill does not request always:true and has no install behavior or code that persists on disk or modifies other skills. Autonomous invocation is enabled by default (normal for skills) but does not combine here with other high-privilege indicators.
Scan Findings in Context
[no-code-files] expected: The regex scanner found nothing because this is an instruction-only skill (SKILL.md only). That's expected, but means the SKILL.md is the primary security surface to review.
What to consider before installing
This skill appears to be a genuine Trading 212 API helper based on its instructions, but it omits required credential declarations in the manifest and has no homepage or clear publisher provenance. Before installing or using it: (1) Prefer testing with DEMO credentials only — do not supply LIVE API keys until you're confident. (2) Ask the publisher to add explicit requires.env and primary credential metadata (so the platform can handle secrets securely). (3) Verify the skill's source (homepage or official publisher) — 'Trading 212' listed as author is not proof of authenticity. (4) If you must use it, supply the minimum necessary credentials and rotate keys afterward. (5) Watch for any requests to read unrelated environment variables or system files; if the agent asks for broader access than documented, stop and revoke keys. Providing no homepage and failing to declare required env vars is the primary reason this skill is flagged as suspicious; getting clear provenance and corrected metadata would raise confidence.Like a lobster shell, security has layers — review code before you run it.
1.0.0vk97c4b33r41tj7df1whmkyhcwh80ekn5latestvk97c4b33r41tj7df1whmkyhcwh80ekn5
License
MIT-0
Free to use, modify, and redistribute. No attribution required.