Skill Trust Decision

whale-alert-monitor

Name: whale-alert-monitor Trust Review Report
Item: whale-alert-monitor
Rating: 30
Author: ClawSafe

技能存在硬编码API密钥、文档未声明的第三方通信以及核心功能使用模拟数据而非真实区块链API的欺骗行为

Install decision first Source: ClawHub Scanned: Apr 12, 2026

Files 12

Artifacts 24

Violations 3

Findings 5

Most direct threat evidence

用户通过 SKILL.md 了解技能功能（加密货币监控） Entry · SKILL.md

技能执行时自动调用 payment.py 的 verify_payment() Escalation · payment.py

硬编码的 BILLING_API_KEY 被发送到外部 skillpay.me API Impact · payment.py

Why this conclusion was reached

3/4 dimensions flagged

Block

Declared vs actual capability

3 undeclared or violating capabilities were inferred.

Block

Hidden execution and egress

1 high-risk artifacts or egress signals were extracted.

Block

Attack chain and severe findings

The report includes 3 attack-chain steps and 2 severe findings.

Review

Dependencies and supply chain hygiene

Dependency information is incomplete, so supply-chain confidence stays limited.

Attack Chain

用户通过 SKILL.md 了解技能功能（加密货币监控）

Entry · SKILL.md:1

技能执行时自动调用 payment.py 的 verify_payment()

Escalation · payment.py:57

硬编码的 BILLING_API_KEY 被发送到外部 skillpay.me API

Impact · payment.py:47

What drove the risk score up

硬编码敏感凭证 +30

payment.py:12 硬编码 BILLING_API_KEY='sk_f03aa8...'，SKILL.md 未声明

文档-行为差异 +25

SKILL.md 未声明 SkillPay 付费系统的存在和外部 API 调用

核心功能欺诈 +20

所有区块链数据获取函数（fetch_recent_transfers/fetch_transactions等）均为模拟随机数据，无真实 API 调用

外部网络请求 +15

向 skillpay.me、telegram、discord 等外部服务发送请求未在文档声明

Most important evidence

High Doc Mismatch

硬编码API密钥未在文档声明

payment.py 第12行硬编码了 BILLING_API_KEY='sk_f03aa8f8bbcf79f7aa11c112d904780f22e62add1464e3c41a79600a451eb1d2'，该凭证用于向 skillpay.me API 进行付费验证，但 SKILL.md 完全未提及此付费系统

payment.py:12

使用环境变量 SKILLPAY_API_KEY 替代硬编码，在文档中明确声明付费机制

High Doc Mismatch

核心功能使用模拟数据而非真实区块链API

whale_tracker.py、transfer_monitor.py、exchange_flow.py 等文件中的 fetch_* 函数均生成随机模拟数据，没有实际调用 Etherscan/Alchemy/Moralis 等区块链 API。声称的'巨鲸转账追踪''交易所资金流向'等功能无法实现

scripts/transfer_monitor.py:76

实现真实的区块链 API 集成或明确标注为演示/模拟模式

Medium Sensitive Access

未声明的环境变量读取

代码读取多个环境变量（ETHERSCAN_API_KEY、TELEGRAM_BOT_TOKEN、TELEGRAM_CHAT_ID、DISCORD_WEBHOOK_URL 等）用于通知功能，但 SKILL.md 未声明这些权限需求

scripts/whale_tracker.py:27

在 SKILL.md 中声明所需的环境变量权限

Medium Supply Chain

外部网络请求未声明

代码向多个外部服务发起网络请求：skillpay.me（付费）、api.telegram.org（通知）、discord.com（webhook通知），但文档未声明这些外部通信行为

payment.py:47

在 SKILL.md capabilities 部分明确列出所有外部 API 端点

Low Doc Mismatch

技能版本号异常

SKILL.md 中 version 为 '1000000.1.0'，远高于正常版本号格式，可能表示测试版本或有意混淆

SKILL.md:1

使用标准语义化版本号格式

Declared capability vs actual capability

Network Block

Declared NONE

→

Inferred WRITE

payment.py:17,47,59 - requests.post/get 到 skillpay.me

Environment Block

Declared NONE

→

Inferred READ

whale_tracker.py:27 - os.getenv('ETHERSCAN_API_KEY'), alert_manager.py:116,134 - os.getenv多个通知token

Filesystem Block

Declared NONE

→

Inferred WRITE

alert_manager.py:55 - open('alert_configs.json','w')

Suspicious artifacts and egress

High API Key

API_KEY = "sk_f03aa8f8bbcf79f7aa11c112d904780f22e62add1464e3c41a79600a451eb1d2"

payment.py:12

Medium External URL

https://skillpay.me

payment.py:11

Medium External URL

https://api.etherscan.io/api

references/api-configuration.md:8

Medium External URL

https://eth-mainnet.g.alchemy.com/v2/

references/api-configuration.md:54

Medium External URL

https://deep-index.moralis.io/api/v2/

references/api-configuration.md:89

Medium External URL

https://eth-mainnet.g.alchemy.com/v2/KEY

references/api-configuration.md:112

Medium External URL

https://eth-mainnet.g.alchemy.com/v2/$

references/api-configuration.md:137

Medium External URL

https://etherscan.io

references/api-configuration.md:138

Medium External URL

https://bsc-dataseed.binance.org

references/api-configuration.md:142

Medium External URL

https://bscscan.com

references/api-configuration.md:143

Medium External URL

https://arb-mainnet.g.alchemy.com/v2/$

references/api-configuration.md:147

Medium External URL

https://arbiscan.io

references/api-configuration.md:148

Dependencies and supply chain

There are no structured dependency warnings.

File composition

12 files · 2253 lines

Python 7 files · 1864 linesMarkdown 4 files · 367 linesJSON 1 files · 22 lines

Files of concern · 8

scripts/alert_manager.py Python · 303 lines

https://api.telegram.org/bot

scripts/whale_tracker.py Python · 279 lines

未声明的环境变量读取

scripts/transfer_monitor.py Python · 300 lines

核心功能使用模拟数据而非真实区块链API

scripts/holding_analyzer.py Python · 283 lines

0x742d35Cc6634C0532925a3b8D4E6D3b6e8d3e8D3

payment.py Python · 142 lines

硬编码API密钥未在文档声明 · 外部网络请求未声明 · API_KEY = "sk_f03aa8f8bbcf79f7aa11c112d904780f22e62add1464e3c41a79600a451eb1d2" · https://skillpay.me

references/api-configuration.md Markdown · 181 lines

https://api.etherscan.io/api · https://eth-mainnet.g.alchemy.com/v2/ · https://deep-index.moralis.io/api/v2/ · https://eth-mainnet.g.alchemy.com/v2/KEY · https://eth-mainnet.g.alchemy.com/v2/$ · https://etherscan.io · https://bsc-dataseed.binance.org · https://bscscan.com · https://arb-mainnet.g.alchemy.com/v2/$ · https://arbiscan.io · https://opt-mainnet.g.alchemy.com/v2/$ · https://optimistic.etherscan.io

references/wallet-labels.md Markdown · 90 lines

0x3f5CE5FBFe3E9af3971dD833D26bA9b5C936f0bE · 0xdB3c617cDd2fBf0c8611C04A49d34C7B332e2BB6 · 0x5a52E96BAcdaBb82fd05763E25335261B270Efcb · 0x71660c4005BA85c37ccec55d0C4493E66Fe775d3 · 0x503828976D22510aad0201ac7EC88293211D23Da · 0x6b75d8AF000000e20B7a7DD000000090D0000000 · 0xf89d7b9c864f589bbF53f821d7EfC68c91d70958 · 0x2B6eD29a95753C3Ad948348e3e7b1A251039FBB9

SKILL.md Markdown · 48 lines

技能版本号异常

Other files · exchange_flow.py · monitor_daemon.py · README.md · _meta.json

Security positives

代码结构清晰，模块化设计良好

没有发现反向shell、代码注入或凭证收割恶意行为

没有发现 base64 编码或代码混淆

通知功能通过标准 API 实现，风险可控