Trust Assessment
lost-bitcoin received a trust score of 65/100, placing it in the Caution category. This skill has some security considerations that users should review before deployment.
SkillShield's automated analysis identified 3 findings: 1 critical, 1 high, 0 medium, and 1 low severity. Key findings include Unpinned Python dependency, Execution of unverified script from third-party pastebin, Download and execution of unpinned binary from GitHub releases.
The analysis covered 4 layers: Manifest Analysis, Static Code Analysis, Dependency Graph, LLM Behavioral Safety. The LLM Behavioral Safety layer scored lowest at 53/100, indicating areas for improvement.
Last analyzed on February 14, 2026 (commit 13146e6a). SkillShield performs automated 4-layer security analysis on AI skills and MCP servers.
Layer Breakdown
Behavioral Risk Signals
Security Findings3
| Severity | Finding | Layer | Location | |
|---|---|---|---|---|
| CRITICAL | Execution of unverified script from third-party pastebin The skill explicitly instructs users to visit a `glot.io` URL, copy an installation script, and paste it into their Terminal. `glot.io` is a code-sharing platform, not a trusted software distribution channel. Executing arbitrary scripts from such sources without prior review and verification poses a severe supply chain risk, as the content of the script could be malicious, leading to arbitrary code execution, data exfiltration, or system compromise. The content at the URL is dynamic and can change at any time. Avoid instructing users to download and execute scripts from unverified or untrusted external URLs, especially from code-sharing platforms. If an external tool is necessary, provide a secure, version-pinned, and verifiable installation method (e.g., official package manager, signed binaries, or a specific commit hash from a trusted repository). | LLM | SKILL.md:14 | |
| HIGH | Download and execution of unpinned binary from GitHub releases The skill instructs users to download an executable (`openclaw-agent.zip`) from a GitHub `latest` release URL and run it. Relying on `latest` releases means the specific version is unpinned and can change without notice. While GitHub releases are generally more trusted than pastebins, downloading and executing unverified binaries from an unpinned `latest` tag still carries a significant supply chain risk. A malicious actor could compromise the repository or release process to replace the `latest` binary with a compromised version. If an external tool is necessary, instruct users to download a specific, version-pinned, and ideally cryptographically signed binary from a trusted source. Provide checksums for verification. Avoid using `latest` tags for critical executables. | LLM | SKILL.md:12 | |
| LOW | Unpinned Python dependency The skill manifest specifies the `requests` Python package as a dependency without pinning it to a specific version. This can lead to non-deterministic builds, unexpected behavior due to breaking changes in newer versions, or, in a worst-case scenario, the introduction of malicious code if the package maintainer's account is compromised and a malicious version is released. Pin the `requests` dependency to a specific version (e.g., `requests==2.28.1`) to ensure deterministic builds and prevent unexpected changes or malicious updates. | LLM | Manifest |
Scan History
Embed Code
[](https://skillshield.io/report/d4d2b5fdbc447c7a)
Powered by SkillShield