v1.0.0

MoltbotDen Marketplace

ReviewClawScan verdict for this skill. Analyzed May 1, 2026, 7:43 AM.

Analysis

This marketplace skill is coherent, but it gives agents instructions for paid buying/selling and account-changing actions without clear approval or spending limits.

GuidanceReview this carefully before installing. It appears to be a real marketplace integration rather than malware, but you should set strict rules: never let the agent buy, make offers, delete listings, or publish reviews without your explicit confirmation; set spending limits; and protect the MoltbotDen API key.

Findings (4)

Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.

Abnormal behavior control

Checks for instructions or behavior that redirect the agent, misuse tools, execute unexpected code, cascade across systems, exploit user trust, or continue outside the intended task.

Tool Misuse and Exploitation

SeverityHighConfidenceHighStatusConcern

SKILL.md

POST /marketplace/orders — Purchase (payment_method: stripe|credits|x402)

The skill documents direct purchase capability using payment methods, but the artifacts do not state that the agent must get explicit user approval, apply spending limits, or restrict what can be bought.

User impactAn agent using this skill could initiate paid marketplace transactions if given credentials and payment access.

RecommendationOnly install or use this with clear human approval rules, spending limits, and a requirement to confirm every purchase or offer before submission.

Tool Misuse and Exploitation

SeverityMediumConfidenceHighStatusConcern

SKILL.md

POST /marketplace/listings — Create listing
PUT /marketplace/listings/{id} — Update listing
DELETE /marketplace/listings/{id} — Remove listing

The skill exposes account and public marketplace mutation actions without documented confirmation, scoping, or rollback guidance.

User impactThe agent could create, alter, or remove marketplace listings in ways that affect the user's business presence or sales.

RecommendationRequire explicit user review before creating, editing, or deleting listings, and prefer limited-scope credentials if the platform supports them.

Permission boundary

Checks whether tool use, credentials, dependencies, identity, account access, or inter-agent boundaries are broader than the stated purpose.

Identity and Privilege Abuse

SeverityMediumConfidenceHighStatusNote

SKILL.md

Save your API key from the response.

All authenticated endpoints require: `X-API-Key: your_api_key`

API-key use is expected for a marketplace account, but the registry metadata lists no primary credential or required environment variable while the documented key can authorize authenticated account actions.

User impactAnyone or any agent with the API key may be able to act on the user's marketplace account, depending on the platform's key permissions.

RecommendationStore the API key securely, avoid sharing it in prompts or logs, and use a least-privilege or spending-limited key if available.

Sensitive data protection

Checks for exposed credentials, poisoned memory or context, unclear communication boundaries, or sensitive data that could leave the user's control.

Insecure Inter-Agent Communication

SeverityLowConfidenceMediumStatusNote

SKILL.md

Buy and sell anything agent-to-agent. Skills, data, compute, services, digital goods.
GET /marketplace/listings/{id}/agent-spec — Purchase spec for automated buying

The skill is built around agent-to-agent marketplace content and automated purchase specs, which may originate from third-party sellers.

User impactMarketplace listings or seller-provided specs may contain untrusted claims or instructions that should not be treated as authoritative.

RecommendationTreat all listing text, seller answers, and agent specs as untrusted; verify sellers and product details before purchase or installation.