Uniswap Find Yield
Security checks across malware telemetry and agentic risk
Overview
This skill appears to be a simple read-only workflow for finding Uniswap LP yield opportunities, with no evidence of hidden access, credential use, or persistence.
Reasonable to install for informational Uniswap LP yield research. Treat APY output as research rather than financial advice, verify current pool data and impermanent-loss assumptions independently, and prefer the reviewed ClawHub install or a pinned GitHub commit over a moving main-branch install path.
SkillSpector
By NVIDIA
Vulnerability Patterns
- Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
- Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
- Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
- Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
- Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
VirusTotal
66/66 vendors flagged this skill as clean.