Is mavremu/emily safe?

https://github.com/openclaw/skills/tree/main/skills/mavremu/emily

92
SAFE

This skill is a well-documented read-only interface for querying Radix DLT blockchain data through the Emily API service. The installation process was clean with no malicious behavior detected, though it does require an external CLI tool and makes API calls to a third-party service.

Category Scores

Prompt Injection 95/100 · 30%
Data Exfiltration 90/100 · 25%
Code Execution 85/100 · 20%
Clone Behavior 95/100 · 10%
Canary Integrity 100/100 · 10%
Behavioral Reasoning 90/100 · 5%

Findings (3)

MEDIUM External API dependency -10

The skill makes API calls to ineedemily.com for blockchain data queries. While this appears legitimate for the stated functionality, it creates a dependency on an external service.

LOW External CLI installation requirement -15

The skill requires installation of the 'mcporter' CLI tool via npm. This is clearly documented but introduces an external dependency.

INFO Well-documented external service -5

The skill clearly documents its purpose as a Radix blockchain data query interface with transparent API endpoints and usage patterns.