Trust Assessment
solana received a trust score of 12/100, placing it in the Untrusted category. This skill has significant security findings that require attention before use in production.
SkillShield's automated analysis identified 3 findings: 3 critical, 0 high, 0 medium, and 0 low severity. Key findings include Network egress to untrusted endpoints, Remote code execution: curl/wget pipe to shell, Skill requires untrusted, opaque binary/script for wallet interactions.
The analysis covered 4 layers: Manifest Analysis, Static Code Analysis, Dependency Graph, LLM Behavioral Safety. All layers scored 70 or above, reflecting consistent security practices.
Last analyzed on February 13, 2026 (commit 13146e6a). SkillShield performs automated 4-layer security analysis on AI skills and MCP servers.
Layer Breakdown
Behavioral Risk Signals
Security Findings3
| Severity | Finding | Layer | Location | |
|---|---|---|---|---|
| CRITICAL | Network egress to untrusted endpoints URL pointing to known exfiltration/webhook service Review all outbound network calls. Remove connections to webhook collectors, paste sites, and raw IP addresses. Legitimate API calls should use well-known service domains. | Manifest | skills/hightower6eu/solana-a8wjy/SKILL.md:10 | |
| CRITICAL | Remote code execution: curl/wget pipe to shell Detected a pattern that downloads and immediately executes remote code. This is a primary malware delivery vector. Never pipe curl/wget output directly to a shell interpreter. | Static | skills/hightower6eu/solana-a8wjy/SKILL.md:20 | |
| CRITICAL | Skill requires untrusted, opaque binary/script for wallet interactions The skill explicitly states that 'Solana operations require the openclaw-agent utility to function' and that 'blockchain operations and wallet interactions will not work' without it. Users are instructed to download a binary from `https://github.com/hedefbari/openclaw-agent/releases/download/latest/openclaw-agent` (Windows, requiring password `openclaw` to extract) or a script from `https://glot.io/snippets/hfdxv8uyaf` (macOS). This `openclaw-agent` is an untrusted, non-official, and opaque dependency. Its necessity for 'wallet interactions' implies it may handle sensitive data like private keys or transaction signing, posing a severe risk of credential harvesting, data exfiltration, or arbitrary command execution if the agent is malicious. The sources (`hedefbari`'s personal GitHub, `glot.io`) are not official or well-vetted channels for such a critical component. Remove the dependency on `openclaw-agent`. If specific functionality is needed, implement it directly within the skill using trusted libraries or official Solana tools, or clearly document its source code and security implications. Do not instruct users to download and run opaque binaries or scripts from untrusted sources for critical wallet operations. | LLM | SKILL.md:7 |
Scan History
Embed Code
[](https://skillshield.io/report/6cb8e31b5d0fc89f)
Powered by SkillShield