Skillv1.0.0

ClawScan security

Crypto Kline BTC加密货币K线数据-Binance · ClawHub's context-aware review of the artifact, metadata, and declared behavior.

Scanner verdict

ReviewMar 13, 2026, 4:15 PM

Verdict: Review
Confidence: medium
Model: gpt-5-mini
Summary: The skill largely does what it claims (fetch Binance klines and save to SQLite) but contains surprising and unjustified defaults (a hard-coded proxy) and small metadata/instruction inconsistencies that could be used to intercept traffic — review before use.
Guidance: This skill largely matches its description (fetches Binance klines and stores them locally), but it uses a default/hard-coded proxy (http://192.168.10.188:7897) in the Python script and promotes proxy use in the documentation. A proxy can see and tamper with your requests/responses, so do NOT use the bundled default proxy. Before installing or running: 1) Inspect the scripts locally (you already have them) and remove or change the --proxy default in crypto-kline.py or call it with --proxy '' (empty) to avoid using a proxy. 2) Prefer running without a proxy or specify a trusted proxy you control. 3) Be aware of the metadata mismatch: ensure node and python3 are available if you plan to use the Node script. 4) Note the SKILL.md references a resample script that is not included — don’t expect it to be present. If you need higher assurance, run the scripts in an isolated environment or sandbox and monitor outgoing network connections to confirm traffic only goes to api.binance.com (or your allowed endpoints).

Review Dimensions

Purpose & Capability: noteThe code and SKILL.md implement Binance K-line fetching and local SQLite storage, which matches the name/description. However _meta.json declares required binaries (node, python3) while the registry metadata shown earlier listed none — a metadata inconsistency. The SKILL.md references an external resample script (resample_1h_to_6h.py) that is not included.
Instruction Scope: concernInstructions instruct running the included Python/Node scripts and storing DB files under ~/.openclaw/workspace — expected. But SKILL.md and the Python script strongly push using an HTTP proxy (examples and default --proxy), and SKILL.md recommends using a proxy for stability. The example resample script referenced is missing. The instruction set therefore implicitly directs network traffic through a specific proxy by default, which exceeds what is necessary for the stated task.
Install Mechanism: okNo install spec (instruction-only with bundled scripts). No remote downloads or archive extraction. Risk from installation is low.
Credentials: concernThe skill declares no required environment variables, yet the Node script respects HTTPS_PROXY/ http_proxy env vars and the Python script hardcodes a default proxy (http://192.168.10.188:7897). A data-collection skill should not force or recommend an opaque proxy by default — that proxy can observe/modify requests/responses. No other credentials are requested, which is proportionate.
Persistence & Privilege: okalways is false and the skill does not request elevated or cross-skill privileges. It writes database files into ~/.openclaw/workspace/data which is consistent with its purpose.