Trading DevBox POC
SuspiciousAudited by ClawScan on May 10, 2026.
Overview
The skill is presented as a mock trading demo, but its instructions describe live trading, wallet creation, and deploying strategies with money without clear safeguards or reviewed implementation.
Do not treat this as a harmless mock demo unless the publisher clearly proves it is testnet/mock-only. Before installing, require reviewed code, clear wallet/key handling, explicit live-trading confirmations, spending limits, and a way to stop deployed strategies.
Findings (4)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
A user or agent could treat a brief phrase as authorization to place real-money trades, creating financial-loss risk.
The skill describes a tool and workflow for live financial trading from natural-language input, but does not specify confirmations, caps, testnet-only mode, reversibility, or other safeguards.
`trading_deploy` — Deploy a backtested strategy to live trading ... Deploy: `上线,100 USDC`
Require explicit user confirmation for every live deployment, disclose whether this is mock/testnet or real trading, set default spending limits, and provide clear stop/rollback controls.
Funds or wallet authority may be created or used in ways the user cannot inspect or control from the artifact.
The artifact introduces wallet creation and balance access without declaring credentials, storage location, key-handling rules, funding source, or user approval boundaries.
Zero user interaction. Wallet auto-generated on first run. ... `/wallet` — Show wallet address and AIUSD balance
Document exactly what wallet is created, where keys are stored, whether funds are real or mock, and require explicit user approval before any wallet-funded action.
A user may install or invoke it believing it is only a sandbox, then approve or trigger behavior that is presented as live trading.
The same artifact frames the skill as a mock-data POC while also advertising live trading deployment, which could mislead users about whether actions affect real money.
description: "Trading strategy sandbox — backtest and deploy strategies via natural language. POC demo with mock data." ... `trading_deploy` — Deploy a backtested strategy to live trading
Make the mode unambiguous: label all actions as mock/testnet or live, and block live trading unless the user explicitly enables it.
Users cannot verify what code would implement wallet and live-trading behavior before trusting the plugin.
The reviewed artifact set contains no code files and no install spec, yet the SKILL instructs plugin installation and claims executable trading tools, leaving the implementation and provenance unavailable for review.
Install the OpenClaw plugin: `openclaw plugins install devbox-poc` ... This plugin registers 3 tools
Publish the implementation, install specification, dependency provenance, and reviewed tool definitions before enabling any trading or wallet functionality.