ClawHub
Back to skill
v1.0.0

Agentic Money

ReviewClawScan verdict for this skill. Analyzed May 1, 2026, 5:31 AM.

Analysis

The skill is coherent for Ethereum agent payments, but it asks the agent to use a wallet private key and can sign ETH transactions, while the registry metadata does not declare that credential requirement.

GuidanceReview carefully before installing. This skill is not clearly malicious, but it is financially sensitive: use a new testnet or low-balance wallet, do not reuse an important private key, pin and verify dependencies, and approve transactions only after checking the network, recipient, amount, and action.

Findings (3)

Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.

Abnormal behavior control

Checks for instructions or behavior that redirect the agent, misuse tools, execute unexpected code, cascade across systems, exploit user trust, or continue outside the intended task.

Tool Misuse and Exploitation
SeverityMediumConfidenceHighStatusNote
SKILL.md
Before executing any transaction, the agent MUST: 1. Confirm the action with the user before signing 2. Display the network, amount, recipient, and action type

The artifact explicitly contemplates transaction execution and signing; the safety rules are good, but the actions remain high-impact if skipped or misunderstood.

User impactA mistaken or overbroad transaction could transfer funds, register on-chain data, or switch networks unexpectedly.
RecommendationRequire explicit per-transaction approval and verify network, recipient, amount, and action type before signing.
Agentic Supply Chain Vulnerabilities
SeverityMediumConfidenceHighStatusNote
SKILL.md
npm install @ethcf/agenticmoney ethers ... npx tsx -e

The skill relies on unpinned npm packages and npx-based execution; this is purpose-aligned for an SDK skill, but it increases supply-chain exposure when combined with wallet-key access.

User impactA compromised or unexpected package version could run code in the same environment as the wallet private key.
RecommendationPin package versions, review the package source, and avoid running npm/npx commands with a funded wallet key unless the dependency chain is trusted.
Permission boundary

Checks whether tool use, credentials, dependencies, identity, account access, or inter-agent boundaries are broader than the stated purpose.

Identity and Privilege Abuse
SeverityHighConfidenceHighStatusConcern
SKILL.md
export AGENTICMONEY_PRIVATE_KEY="0x..." ... "This wallet will hold your funds."

The skill requires a raw Ethereum private key for SDK calls, giving any executed command signing authority over wallet funds.

User impactIf the private key is mishandled or a transaction is approved incorrectly, ETH in that wallet could be spent and blockchain transactions may not be reversible.
RecommendationUse a dedicated low-balance wallet, start on testnet, confirm every transaction detail manually, and only install after accepting that the skill needs wallet-signing authority.