ClawHub

Knab

v1.1.0

Read-only on-chain research tool for AIMS protocol vaults. Use when user asks about KNAB vaults, AIMS token prices, or vault pool reserves.

0· 97·0 current·0 all-time
by@wangdoucom
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
Capability signals
CryptoRequires walletCan make purchasesCan sign transactions
These labels describe what authority the skill may exercise. They are separate from suspicious or malicious moderation verdicts.
VirusTotalVirusTotal
Benign
View report →
OpenClawOpenClaw
Benign
medium confidence
Purpose & Capability
Name/description, tools.json, SKILL.md, and package.json all state a read‑only on‑chain research purpose and the declared dependency (ethers via node) is appropriate. However, the distributed JS file contains header comments and an ABI that include write functions (Buy, Sell, setInviteCode, acceptInvite) and marketing text referencing deposit/refer() calls. That is not fatal — ABIs often include both read and write signatures — but the presence of deposit/refer wording in the bundled code is an unexpected mismatch with the explicit 'read-only' claim and should be noted.
Instruction Scope
SKILL.md instructs the agent to run read-only workflows (knab_vaults, knab_research, knab_verify, knab_discover, knab_dashboard, knab_estimate) and explicitly states 'Read-only by default' and 'No wallet needed.' The instructions do not request reading unrelated files, environment variables, or external endpoints outside the listed RPC/explorer URLs embedded in tokens.json.
Install Mechanism
This is an instruction‑only skill with bundled dist files and no install spec. It requires the node binary and relies on the ethers library (declared in package.json). No remote downloads or archive extraction are specified, which keeps install risk low.
Credentials
The skill declares no required environment variables, no primary credential, and no config paths. The provided tokens.json includes public RPC endpoints and explorer URLs only. There are no obvious requests for secrets or unrelated credentials.
Persistence & Privilege
Flags show always:false and normal user/agent invocation. The skill does not request permanent presence or elevated platform privileges.
Assessment
This skill appears to do what it claims: read public blockchain data for the listed vaults using ethers and public RPC endpoints, and it does not request credentials. Before installing, review the bundled dist/index.js for any code paths that construct wallets, call getSigner(), use process.env.* (PRIVATE_KEY, MNEMONIC, etc.), or POST data to external domains. The header comments and ABI include write‑method names and marketing text (deposit/refer), which is unexpected for a read‑only tool — ensure the agent or host environment will not expose any wallet or signing capability to the skill. If you plan to allow autonomous invocation with access to signing tools, re-check the full source for any functions that could be used to perform transactions.

Like a lobster shell, security has layers — review code before you run it.

latestvk977rw6a9gnen9g72v7fzrmfv184av2t

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Runtime requirements

🔬 Clawdis
Binsnode

Comments