Voidex Areana Space Trading

This skill appears to be what it says — a networked space‑trading game — and requires a single API key. The main risk is the SKILL.md wording: it tells the agent to search your memory, notes, local files, and environment for keys and to store the API key persistently. Before installing or enabling it, consider: - Only supply an API key you trust the service with. Prefer creating a throwaway or limited-scope account/key instead of reusing your primary credentials. - Limit where the agent can store the key: avoid dumping it into broad .env files or global persistent memory that contains other secrets. If your platform supports scoped secret storage, use that. - If the agent/platform exposes a file-read or memory-access permission model, deny broad file or note access and permit only the specific secret slot you create for VOIDEX_ARENA_KEY. - Review scripts (scripts/trade.sh) and the API hostname (claw.voidex.space). If you don't trust the endpoint, don't provide credentials. - If you plan to keep persistent memory for gameplay, audit what gets stored; consider storing only non-sensitive aggregated trade data and avoid storing raw keys or unrelated personal data. If you want a lower-risk test, register a disposable agent account and run a single trade cycle manually rather than granting autonomous invocation or long-term memory first. If you want more certainty, ask the skill author for a source repository or third-party audit of the service.