Back to skill
Skillv0.1.4
ClawScan security
nostrwalletconnect · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignMar 19, 2026, 11:13 PM
- Verdict
- Benign
- Confidence
- high
- Model
- gpt-5-mini
- Summary
- The skill's requests and instructions are coherent with its stated purpose (using a Nostr Wallet Connect connection string to pay/check/create Lightning invoices); no glaring mismatches or hidden exfiltration paths were found, but verify the package source and treat the connection string as a high-value secret before installing.
- Guidance
- This skill appears coherent for enabling Lightning payments via Nostr Wallet Connect, but treat the NWC connection string as a high-value secret — anyone with it can authorize payments. Before installing: 1) Verify the pip package name and publisher on PyPI and the linked GitHub repo to ensure you are installing the intended project; 2) Use a wallet/account with limited funds or scoped permissions for AI-operated keys; 3) Confirm whether NOSTRKEY_PASSPHRASE is required in your deployment (metadata vs registry summary mismatch); 4) Review the package dependencies (nostrkey and others) for supply-chain risk; 5) Audit any automated/autonomous agent use of this skill — if the agent will pay invoices automatically, enforce policy and rate limits to avoid unintended spending.
Review Dimensions
- Purpose & Capability
- okName/description (Nostr Wallet Connect for Lightning payments) match the behavior and requirements: the skill needs a NWC connection string and provides methods to check balance, pay invoices, create invoices, and list transactions. The examples and API usage align with the stated purpose.
- Instruction Scope
- noteSKILL.md instructs the agent to read a single secret environment variable (NWC_CONNECTION_STRING) and use the nostrwalletconnect client API. The instructions do not reference unrelated system files or external endpoints beyond Nostr relays and expected wallet interaction. Minor scope note: SKILL.md refers to installing/using the NostrKey skill for identity, and metadata also references a passphrase env var (NOSTRKEY_PASSPHRASE) — this is plausible but should be confirmed as required only by the nostrkey dependency.
- Install Mechanism
- okInstall uses a pip package named 'nostrwalletconnect' (declared in metadata and SKILL.md). This is a standard package installation mechanism (moderate risk inherent to installing third-party packages). The homepage and repository point to GitHub rather than an arbitrary URL, which is appropriate. No archive downloads from untrusted hosts were found.
- Credentials
- noteThe skill legitimately requires a sensitive NWC connection string (NWC_CONNECTION_STRING) that contains wallet pubkey, relay, and secret — this is necessary for the functionality and is appropriately marked sensitive in metadata. Metadata also lists an optional NOSTRKEY_PASSPHRASE for the nostrkey dependency, which is plausible. There is a minor inconsistency: the registry summary at the top of the package data claimed 'Required env vars: none' while metadata.json declares NWC_CONNECTION_STRING as required; this is likely a metadata mismatch and should be clarified before deployment.
- Persistence & Privilege
- ok'always' is false (no forced inclusion), the skill does not request system-wide config changes or access to other skills' credentials, and it does not demand persistent elevated privileges. Autonomous invocation is allowed (platform default) but is not combined with other worrying privileges.