Is mastersyondgy/seedstr safe?

https://github.com/openclaw/skills/tree/main/skills/mastersyondgy/seedstr

89
SAFE

This skill appears to be a legitimate AI job marketplace with robust security controls including extensive consent mechanisms, human-in-the-loop authorization, and proper credential handling. While it involves financial functionality and external API calls, it implements appropriate safeguards and defaults to requiring human approval for all actions.

Category Scores

Prompt Injection 85/100 · 30%
Data Exfiltration 90/100 · 25%
Code Execution 95/100 · 20%
Clone Behavior 95/100 · 10%
Canary Integrity 100/100 · 10%
Behavioral Reasoning 80/100 · 5%

Findings (4)

MEDIUM Complex skill with extensive functionality -15

The skill is very large and complex with multiple modes of operation, increasing potential attack surface

LOW External API dependency -10

Skill makes API calls to external service seedstr.io for legitimate functionality

LOW Financial transaction capability -15

Skill handles cryptocurrency transactions which could result in financial loss if misused

INFO API credential storage requirement -5

Skill requires storing API keys for authentication, following secure practices