v0.1.1

Opinion Skill

ReviewClawScan verdict for this skill. Analyzed May 1, 2026, 6:08 AM.

Analysis

This appears to be a coherent Opinion trading tool, but it needs Review because it uses wallet/API credentials and can perform on-chain approvals and financial trading actions with limited built-in guardrails.

GuidanceReview this carefully before installing. Only use it with a dedicated wallet you can afford to risk, verify the Opinion SDK and repository source, pin dependencies, and require explicit confirmation for every approval, buy, sell, or cancel-all action.

Findings (5)

Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.

Abnormal behavior control

Checks for instructions or behavior that redirect the agent, misuse tools, execute unexpected code, cascade across systems, exploit user trust, or continue outside the intended task.

Tool Misuse and Exploitation

SeverityHighConfidenceHighStatusConcern

scripts/buy.ts

const resp = await client.placeOrder({ marketId, tokenId, side, orderType: oType, price: isMarket ? "0" : price, makerAmountInQuoteToken: amount }, true);

User/agent-supplied command arguments are sent directly to order placement, and the script does not include an interactive confirmation, maximum-spend policy, or dry-run requirement before placing the order.

User impactAn invoked trading command can create real financial orders using the configured wallet credentials.

RecommendationRequire explicit user confirmation immediately before every buy/sell/cancel/approval action, show a transaction preview, and add configurable spend and market limits.

Agentic Supply Chain Vulnerabilities

SeverityMediumConfidenceHighStatusNote

package.json

"@opinion-labs/opinion-clob-sdk": "^0.5.3", "axios": "^1.7.0"

The dependency versions use caret ranges, so a future install can resolve newer package versions. That is common in JavaScript projects, but it is important here because the SDK path handles wallet signing and trading.

User impactA dependency update could change the code that processes credentials or submits trades.

RecommendationPin exact dependency versions, include a lockfile, and install only from a trusted package source.

Unexpected Code Execution

SeverityLowConfidenceHighStatusNote

SKILL.md

curl -fsSL https://bun.sh/install | bash && source ~/.bashrc

The setup instructions include executing a downloaded installer. This is user-directed and aligned with installing Bun, but it executes code outside the reviewed skill files.

User impactInstalling Bun this way runs remote code in the user's shell environment.

RecommendationInstall Bun through a trusted, verified method and avoid running remote install scripts in sensitive wallet environments.

Cascading Failures

SeverityMediumConfidenceHighStatusNote

scripts/config.ts

const OPINION_API_HOST = "http://newopinion.predictscanapi.xyz:10001";

Market, price, and orderbook data are fetched from a plaintext HTTP endpoint. In a trading workflow, tampered or stale market data could influence a user or agent before an order is placed.

User impactA network attacker or unreliable data source could mislead trading decisions based on displayed prices or orderbook data.

RecommendationPrefer HTTPS/authenticated data sources and independently verify prices before submitting trades.

Permission boundary

Checks whether tool use, credentials, dependencies, identity, account access, or inter-agent boundaries are broader than the stated purpose.

Identity and Privilege Abuse

SeverityHighConfidenceHighStatusConcern

scripts/sdk-config.ts

const PRIVATE_KEY = process.env.PRIVATE_KEY; ... apiKey: API_KEY, ... privateKey: PRIVATE_KEY as `0x${string}`, multiSigAddress: MULTI_SIG_ADDRESS as `0x${string}`

The trading client is constructed with a raw wallet private key, API key, and multi-signature wallet address. This is powerful account authority, and the registry metadata does not declare required credentials.

User impactIf these credentials are present, the skill can act through the user's Opinion wallet and sign or submit trading-related actions; exposure or misuse could affect funds and open orders.

RecommendationUse a dedicated low-balance wallet/key, avoid shared environments, declare the credential requirements clearly, and prefer scoped or delegated credentials over a raw private key where possible.