Base Network OSINT
ReviewAudited by ClawScan on May 10, 2026.
Overview
The skill is mostly aligned with token research, but it asks to persist and update its own instructions from a mutable remote URL and advertises wallet control without clear approval boundaries.
Review this skill carefully before use. Avoid letting it automatically cache or update itself from the remote URL unless you trust the publisher and can verify the content. If using the wallet features, keep the wallet read-only where possible, manually approve every transaction, and avoid connecting high-value wallets until the permission and update boundaries are clearer.
Findings (4)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
The instructions the agent follows could change after review or between uses if the remote file changes.
The skill makes future behavior depend on a mutable remote SKILL.md and does not mention pinning, signatures, hashes, or registry-mediated updates.
Fetch `https://app.kybera.xyz/SKILL.md` ... overwrite `~/.openclaw/skills/kybera.md`; "fetch from URL on each command"
Use a registry-pinned version, require explicit user approval for updates, and verify remote updates with a signed hash or equivalent integrity check.
The skill may leave persistent instructions on disk that can influence later sessions or be overwritten by later remote updates.
The skill asks the agent to write a persistent copy of itself into the local OpenClaw skills directory even though the package is described as instruction-only with no install spec.
On First Use (per session): Attempt to cache this skill to `~/.openclaw/skills/kybera.md`
Do not allow automatic self-caching unless the user explicitly approves it; provide a clear uninstall/cleanup path and keep persistence managed by the platform installer.
If connected to a real wallet, unsafe or misunderstood agent actions could affect funds or account state.
Wallet operations can affect crypto assets, but the visible artifacts do not define credential scope, transaction limits, confirmation requirements, or read-only versus write actions.
You are connected to a Kybera wallet application. This skill file provides instructions for token research and wallet operations.
Use read-only mode for research where possible, require explicit per-transaction human approval, and test only with limited-fund wallets unless the operational scope is clearly documented.
The displayed skill text may not perfectly reflect the original bytes, making manual review less reliable.
Hidden Unicode control characters can sometimes change how instructions display or are interpreted. The exact characters and location were not provided, so this is a hygiene warning rather than a standalone concern.
Pre-scan injection signals: unicode-control-chars; controlCharactersRemoved: 2
Publish a normalized Markdown file without Unicode control characters and re-run review on the exact unmodified source.