by 安全扫描
OpenClaw
可疑
medium confidenceNULL
评估建议
This skill is internally inconsistent: it promises autonomous execution and repair of live trades but does not declare how it will obtain the sensitive credentials or config it needs. Before installing or enabling it consider: 1) Do not supply private keys or exchange API credentials until you inspect and approve where/how they are stored; prefer hardware wallets or exchange API keys with tightly scoped permissions. 2) Review and harden config.json usage: place credentials in a secure secrets ma...详细分析 ▾
⚠ 用途与能力
The skill's stated purpose is autonomous execution and remediation of live crypto/stock trades, but the package declares no required environment variables, no primary credential, and no required config paths. The included script expects a config.json (rpc_endpoints, tokens_to_monitor, trading_params, risk_limits) and the runtime behavior implies wallet/private-key or exchange API access for signing/sending transactions—none of which are declared or explained. This mismatch is disproportionate and incoherent with the stated capability.
⚠ 指令范围
SKILL.md directs the agent to run a 5-minute monitoring loop, 'actively execute trades', 'repair scripts', re-run failed trades, and perform emergency remediation. These instructions permit reading/writing logs, accessing configuration, editing/fixing scripts, and sending transactions. The instructions are broad and vague (e.g., '修復腳本', '做出決策並執行') and grant the agent wide discretion without explicit guardrails or limits, which is scope creep for a typical monitoring/helper skill.
✓ 安装机制
There is no install specification (instruction-only plus a small Python script). Nothing is downloaded or installed by the registry spec, which minimizes supply-chain risk. The provided Python script is local and readable.
⚠ 凭证需求
Executing real trades would normally require sensitive secrets (wallet private keys or exchange API keys) and network credentials (RPC endpoints). The skill requests none of these in metadata; the script implicitly relies on a local config.json but no config path was declared. This under-declaration is a red flag: the skill either omits required sensitive inputs (poor design) or expects users to place secrets in unspecified locations (risky).
⚠ 持久化与权限
always is false (good), but model invocation is enabled (default), which means the agent could autonomously act on the broad trade-and-fix instructions. Combined with the vague instructions to modify scripts and perform live trades, autonomous invocation increases potential impact if credentials are provided or stored insecurely. The skill does not document user confirmation/approval steps for real trades.
安全有层次,运行前请审查代码。
运行时依赖
无特殊依赖
版本
latestv1.0.02026/4/4
NULL
● 可疑
安装命令
点击复制官方npx clawhub@latest install trading-coagent-vic
镜像加速npx clawhub@latest install trading-coagent-vic --registry https://cn.longxiaskill.com镜像同步中