Security Audit

wallet-tracker

github.com/openclaw/skills

AI SkillCommit 13146e6a3d46

CAUTION

Scanned 3 months ago

Critical

Immediate action required

High

Priority fixes suggested

Medium

Best practices review

Low

Acknowledged / Tracked

Trust Assessment

wallet-tracker received a trust score of 67/100, placing it in the Caution category. This skill has some security considerations that users should review before deployment.

SkillShield's automated analysis identified 2 findings: 1 critical, 0 high, 1 medium, and 0 low severity. Key findings include Shell Command Injection via Unsanitized Placeholders, Unpinned Dependency in Manifest.

The analysis covered 4 layers: Manifest Analysis, Static Code Analysis, Dependency Graph, LLM Behavioral Safety. The LLM Behavioral Safety layer scored lowest at 63/100, indicating areas for improvement.

Last analyzed on February 13, 2026 (commit 13146e6a). SkillShield performs automated 4-layer security analysis on AI skills and MCP servers.

Layer Breakdown

Manifest Analysis

100%

Static Code Analysis

100%

Dependency Graph

100%

LLM Behavioral Safety

63%

Behavioral Risk Signals

Network Access

2 findings

Shell Execution

1 finding

Dynamic Code

1 finding

Security Findings2

Severity	Finding	Layer	Location
CRITICAL	Shell Command Injection via Unsanitized Placeholders The skill's `bash` code snippets demonstrate `curl` commands where placeholders like `ADDRESS` and `YourApiKey` are directly embedded into the command string. If an AI agent were to substitute these placeholders with user-controlled input without proper sanitization or shell escaping, it could lead to shell command injection. An attacker could craft malicious input (e.g., `'; rm -rf /'`) that, when inserted into the `curl` command, would execute arbitrary commands on the host system. This is a common vulnerability pattern in scripts that construct shell commands from untrusted input. Implement robust input validation and sanitization for all user-provided parameters before constructing and executing shell commands. Use parameterized execution methods where possible, or shell escaping functions (e.g., `shlex.quote` in Python) to prevent malicious input from being interpreted as commands.	LLM	SKILL.md:20
MEDIUM	Unpinned Dependency in Manifest The skill's manifest specifies `requests` as a dependency without pinning it to a specific version (`"package": "requests"`). Relying on unpinned dependencies can introduce supply chain risks. A future version of `requests` (or any of its transitive dependencies) could introduce breaking changes, vulnerabilities, or even malicious code, potentially impacting the security and stability of the skill. Pin the dependency to a specific, known-good version (e.g., `"package": "requests==2.28.1"`) to ensure consistent and secure installations. Regularly review and update pinned dependencies to benefit from security patches while maintaining control over changes.	LLM	SKILL.md:1

Scan History

Embed Code

[![SkillShield](https://skillshield.io/api/v1/badge/200f02d8f9a844f6.svg)](https://skillshield.io/report/200f02d8f9a844f6)