nadfunagent

Autonomous Nad.fun trading agent that scans markets via API and indexer, analyzes tokens, executes trades, and shares profits with MMIND token holders.

This package contains a full autonomous trading bot and expects to hold your wallet private key and RPC settings. Before installing: - Don't copy your primary/mainnet private key into the skill or into OpenClaw memory. If you must run this, use a dedicated hot wallet with minimal funds and monitor it closely. Prefer ephemeral env vars or hardware-signer integration if available. - SKILL.md explicitly instructs the agent to save MONAD_PRIVATE_KEY into OpenClaw memory/session storage — that is risky because an autonomous agent or other parts of the platform could access the secret. Consider removing that instruction or keeping secrets out-of-band. - The registry metadata incorrectly lists no required env vars while the code requires several secrets; this mismatch is an engineering red flag. Verify and set expected env vars yourself rather than relying on the skill to prompt/store them. - The code has inconsistencies (NAD_PRIVATE_KEY vs MONAD_PRIVATE_KEY, several undefined/ambiguous variables like scriptDir/reportPath/REPORT_PATH) that suggest it is unpolished and may fail or behave unexpectedly. Audit the scripts (especially execute-bonding-v2.js, fix-entry-prices.js, check-pnl.js, buy-token.js) before granting autonomous execution. - Telegram integration will publish detailed reports to a third-party endpoint; ensure you understand what data will be sent (wallet addresses, position sizes, trades) and only provide a bot/token you control. - Test thoroughly on testnet/devnet and run the scripts manually first (no cron, no autonomous agent) to confirm behavior. If you are not comfortable auditing the code or exposing a private key, do not install or run this skill with autonomous invocation enabled.

Type: OpenClaw Skill Name: nadfunagent Version: 1.0.0 The skill bundle is classified as suspicious due to multiple critical shell injection vulnerabilities in the Node.js trading scripts. Specifically, `trading/check-pnl.js`, `trading/execute-bonding-v2.js`, and `trading/sell-all.js` use `execSync` or `execAsync` to execute other scripts, passing `tokenAddress` values (sourced from external API responses) directly into shell commands without proper sanitization. If the Nad.fun API were compromised or a malicious token creator could register a specially crafted token address, this could lead to arbitrary code execution (RCE) on the host system. While there is no clear evidence of intentional malicious behavior, these vulnerabilities pose a severe risk.