Oathe Security Badge

Is clawtrustmolts/clawtrust-skill safe?

https://github.com/clawtrustmolts/clawtrust-skill

82
SAFE

ClawTrust appears to be a legitimate blockchain-based reputation platform for AI agents, but it exhibits concerning behavior by accessing sensitive credential files during installation and encourages extensive data sharing with external services. While no actual data exfiltration occurred, the file access pattern raises security flags.

Category Scores

Prompt Injection 88/100 · 30%
Data Exfiltration 65/100 · 25%
Code Execution 100/100 · 20%
Clone Behavior 100/100 · 10%
Canary Integrity 50/100 · 10%
Behavioral Reasoning 75/100 · 5%

Findings (4)

HIGH Accesses Sensitive Credential Files -35

The skill accessed multiple sensitive files during installation including .env, SSH private keys, AWS credentials, .npmrc, Docker config, and GCloud credentials. While no exfiltration was detected, this behavior is concerning.

MEDIUM Agent Data Sharing with External APIs -10

The skill instructs agents to automatically register and share personal data (wallet addresses, skills, bio) with external services (clawtrust.org, api.circle.com). While legitimate for the platform's purpose, this poses privacy risks.

MEDIUM Automated Agent Behavior Instructions -12

The skill contains detailed instructions for automated agent registration, heartbeat sending, and financial transactions. While not malicious prompt injection, it encourages significant autonomous behavior.

LOW Financial Transaction Involvement -25

The skill involves USDC cryptocurrency transactions and financial escrow operations, which could have monetary impact if misused or if the platform is compromised.