ClawAudit verdict
clawcredit
firstt
Receives external input AND executes processes
The skill explicitly states the SDK 'automatically collects agent context for credit evaluation' and 'continuously monitors your agent's behavior during pre-qualification', while also facilitating real financial transactions (USD credit backed by Base/Solana/XRPL blockchain settlements) โ a combination of behavioral surveillance and actual payment obligations that goes well beyond typical API integration.
Automated static analysis โ not a human review. ClawAudit flags capabilities, not confirmed intent, and can produce false positives. Disagree with this verdict? Use Dispute below.
What it does
These are capability combinations: each listed behavior occurs in the skill, but ClawAudit detects co-occurrence โ it does not verify that one flows into another. Read the code to confirm a live chain.
Receives external input AND executes processes โ the shape of a command & control channel
LLM05 ยท LLM06 ยท ASI10
Reads local files AND makes external network calls โ the capabilities for data exfiltration co-occur (data-flow not verified)
LLM02 ยท LLM06 ยท ASI03
Executes processes AND makes external network calls โ may exfiltrate command output
LLM02 ยท LLM06 ยท ASI03
Accesses credentials AND makes external network calls โ potential credential theft
LLM02 ยท ASI03
Installs packages AND executes processes โ opaque dependency chain with execution
LLM03 ยท ASI04
Permission integrity
network_out
credential_access
package_install
Findings (3)
Instructs covert action โ may act without user awareness
SKILL.md ยท code ยท silently
File read operation
SKILL.md ยท code
fetch() โ outbound network request
SKILL.md ยท code
Permissions & capabilities
No declared permissions โ minimal attack surface.
package_installfile_readprocess_execcredential_accessnetwork_outnetwork_in Thanks โ recorded.