Skill flagged — suspicious patterns detected
ClawHub Security flagged this skill as suspicious. Review the scan results before using.
HFT Paper Trader Pro
v1.1.0High-frequency paper trading framework for crypto. Multi-indicator TA scoring (RSI/MACD/EMA/BB/OBV/StochRSI), dual-regime filter (15m fast + 4h macro), posit...
⭐ 0· 99·0 current·0 all-time
byZero2Ai@zero2ai-hub
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
OpenClaw
Suspicious
medium confidencePurpose & Capability
SKILL.md describes a coherent paper-trading framework (TA indicators, regime filters, file-based portfolio/ledger). That functionality does not require extra credentials or installers, so the declared lack of required env vars/install is plausible. However registry metadata (slug/version/owner) does not match _meta.json and SKILL.md (registry lists 'hft-paper-trader-pro' v1.1.0 while _meta.json and SKILL.md show different slugs/versions/owner), and there is no homepage or source URL — this provenance mismatch is unusual and unexplained.
Instruction Scope
The SKILL.md is instruction-only and describes reading market data from 'Binance public API' and writing local files (portfolio.json, journal.json, observations.md). Those actions are consistent with paper trading. But instructions are high-level and vague (no explicit endpoints, no commands, no code), and the 'self-improvement loop' / 'lessons captured after each loss' is underspecified (no target for telemetry or model training). Vague instructions can give an agent broad discretion to call external endpoints or aggregate and transmit data if implemented later.
Install Mechanism
No install spec and no code files — lowest-risk packaging pattern. Nothing will be written to disk by an installer at install time. The security surface is entirely the SKILL.md instructions when the agent runs.
Credentials
The skill declares no required environment variables or credentials, which is reasonable for public-market-data-only paper trading. However, SKILL.md references 'Binance public API' (some Binance endpoints require keys/rate-limited access) and an autonomous/self-improvement loop that might need remote storage or credentials; the absence of any declared env vars or endpoints leaves ambiguity about what secrets (if any) might be needed or used by an implementation.
Persistence & Privilege
Flags are default (always:false, user-invocable:true, model invocation allowed). The skill will not be force-included system-wide. It will be able to act autonomously if invoked, which is normal for skills; this combination alone is not a red flag.
What to consider before installing
Do not install or run this skill without additional verification. Key actions to take before trusting it: 1) Ask the publisher for the full source code or a canonical repository/homepage and confirm the owner identity (the registry metadata, SKILL.md, and _meta.json contain inconsistent owner/slug/version values). 2) Request explicit details about any external endpoints used by the 'self-improvement loop' (where lessons are sent/stored); disallow any unexpected network exfiltration. 3) Run the skill in an isolated environment (no access to sensitive network segments or credentials) and monitor outbound connections; ensure it only calls public Binance endpoints you expect. 4) Inspect any implementation for network calls, hardcoded URLs, or code that reads other credentials or system files. 5) Do not connect any real exchange accounts or real funds — this is described as paper trading. 6) If you need autonomous execution, prefer skills with a public repo, clear provenance, and reproducible builds; if the author can’t or won’t provide source/clarity, treat the skill as untrusted.Like a lobster shell, security has layers — review code before you run it.
latestvk97b6671rnz612zc1k2jkfttqn83404g
License
MIT-0
Free to use, modify, and redistribute. No attribution required.