Back to skill
Skillv0.3.3
ClawScan security
Harena · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignApr 15, 2026, 1:23 AM
- Verdict
- benign
- Confidence
- high
- Model
- gpt-5-mini
- Summary
- The skill's requests and runtime instructions are coherent with a market-data/trading-intelligence integration and only require a single service API key; nothing in the package suggests mismatched or excessive access.
- Guidance
- This skill appears internally consistent, but you should only install it if you trust https://harena.world. Before installing: (1) verify the service's documentation and privacy/terms to confirm API keys are read-only and no trading keys are required; (2) create and use a scoped/test API key (not your primary secrets); (3) review MCP server URL in your client config to ensure it matches the official domain (examples show both harena.world and www.harena.world); and (4) monitor usage/quotas after enabling the skill. If you need higher assurance, ask the publisher for security docs or an audit showing the API key is used for read-only access only.
Review Dimensions
- Purpose & Capability
- okName/description (market data, news, alerts) align with required HARENA_API_KEY and MCP-based tool calls. Asking for a single API key is expected for a third‑party market data service.
- Instruction Scope
- okSKILL.md only instructs the agent to call Harena via the documented MCP tools and to provide the service API key. It does not direct the agent to read unrelated files, other credentials, or system state. The explicit rule to avoid raw HTTP (curl/fetch) is restrictive but consistent with the described MCP integration.
- Install Mechanism
- okInstruction-only skill with no install spec or code files — nothing is written to disk or fetched during install. Low install risk.
- Credentials
- okOnly one environment variable (HARENA_API_KEY) is required and declared as primary. That is proportionate to a remote API service. No unrelated secrets or config paths are requested.
- Persistence & Privilege
- okalways is false and the skill is user-invocable; it does not request persistent elevated privileges or modification of other skills. Autonomous invocation is allowed (platform default) but not excessive here.