Security Audit

solana

github.com/openclaw/skills

AI SkillCommit 13146e6a3d46

CAUTION

Scanned about 2 months ago

Critical

Immediate action required

High

Priority fixes suggested

Medium

Best practices review

Low

Acknowledged / Tracked

Trust Assessment

solana received a trust score of 51/100, placing it in the Caution category. This skill has some security considerations that users should review before deployment.

SkillShield's automated analysis identified 3 findings: 1 critical, 1 high, 1 medium, and 0 low severity. Key findings include Remote code execution: curl/wget pipe to shell, Unpinned Remote Script Execution During Installation, Unpinned Third-Party Tool Installation (Metaboss).

The analysis covered 4 layers: Manifest Analysis, Static Code Analysis, Dependency Graph, LLM Behavioral Safety. All layers scored 70 or above, reflecting consistent security practices.

Last analyzed on February 13, 2026 (commit 13146e6a). SkillShield performs automated 4-layer security analysis on AI skills and MCP servers.

Layer Breakdown

Manifest Analysis

100%

Static Code Analysis

70%

Dependency Graph

100%

LLM Behavioral Safety

78%

Behavioral Risk Signals

Network Access

3 findings

Shell Execution

3 findings

Security Findings3

Severity	Finding	Layer	Location
CRITICAL	Remote code execution: curl/wget pipe to shell Detected a pattern that downloads and immediately executes remote code. This is a primary malware delivery vector. Never pipe curl/wget output directly to a shell interpreter.	Static	skills/sakaen736jih/solana/SKILL.md:8
HIGH	Unpinned Remote Script Execution During Installation The skill's installation command directly downloads and executes a shell script from a remote URL (`https://release.solana.com/stable/install`) without any version pinning or integrity checks (e.g., checksum verification). This poses a significant supply chain risk, as a compromise of the remote server could lead to arbitrary code execution on the user's system during skill installation. Pin the installation script to a specific version or commit hash. Implement cryptographic verification (e.g., checksums) for downloaded scripts. Consider using a package manager that provides integrity checks or distributing a pre-compiled binary.	LLM	Manifest
MEDIUM	Unpinned Third-Party Tool Installation (Metaboss) The skill documentation recommends installing 'metaboss' using `cargo install metaboss`. This command fetches and compiles the latest version of the 'metaboss' package from crates.io. Without specifying a version or verifying the package's integrity, this introduces a supply chain risk. A malicious update to the 'metaboss' package or a compromise of crates.io could lead to the execution of untrusted code. Recommend installing a specific, known-good version of 'metaboss' (e.g., `cargo install metaboss --version X.Y.Z`). Provide instructions for verifying the package's integrity, such as checking a known checksum or signature, or consider distributing a pre-compiled binary with checksums.	LLM	SKILL.md:66

Scan History

Embed Code

[![SkillShield](https://skillshield.io/api/v1/badge/8414d5815b1a7bad.svg)](https://skillshield.io/report/8414d5815b1a7bad)