pumpfun-sniper

Name: pumpfun-sniper
Author: ultranumblol

DeFi by @ultranumblol v1.0.0 5 flags

Score any pump.fun token CA for snipe safety (0-100) before buying. Analyzes dev wallet history, social links, liquidity, and holder concentration. Returns SNIPE / CAUTION / AVOID verdict with detailed signal breakdown. Use when the user wants to snipe a new token, check if a pump.fun token is safe, score a new launch, detect rug potential, or analyze a fresh CA before buying. Keywords: pump.fun snipe, rug check, new token score, CA analysis, safe to buy.

Install

$ cp -r cryptoskill/skills/defi/pumpfun-sniper .claude/skills/

$ clawhub install pumpfun-sniper

Trust profile trust grade not computed yet

5 red flags 5 cleared 1 not measured

Capabilities below are detected automatically by an open-source scanner that reads the skill's text and scripts (see how this is computed). Not measured means the scanner couldn't make a confident call — it is NOT a green check, and you should treat it as a possible red flag until a human or a stronger scanner has measured it.

5 Red flags things this skill can do that affect your security or funds

⚠
Requires hosted operator depends on a third-party hosted service to function
⚠
Mutable remote runtime runs remote code that can change behavior without a local diff
⚠
Can install code installs software at setup time (npx, pip, brew, etc.)
⚠
Can execute shell runs arbitrary shell commands on your machine
⚠
Can browse the web fetches arbitrary URLs at runtime

5 Cleared by scanner we scanned the skill's text & scripts and found no evidence of these

✓
Can move funds this skill can sign and send transactions on your behalf
✓
Requires private key you must hand over a private key, mnemonic, or wallet config
✓
Uses remote install script setup pipes a remote shell script (curl | sh class)
✓
Can write files writes to your local filesystem
✓
Can spawn sub-agents delegates to other skills or sub-agents

1 Not measured yet scanner couldn't make a confident call — treat as a possible red flag

?
Auto-invocable may be invoked by the agent without your explicit prompt

Execution mode

analysis_only Phase 1 single-mode classification — multi-mode breakdown deferred to Phase 2.

Ingredients (services this skill talks to)

External services this skill needs in order to work. The skill's behavior depends on these services being up, honest, and unchanged. Today we only show services we recognize from a curated list of ~50 well-known hosts (exchanges, RPC providers, data APIs); a complete dependency list — including every package, library, and binary the skill installs or imports — is on the roadmap.

service helius-rpc.com
service helius.xyz

Audits

No one has audited this skill yet. That is different from “audited and clean” — it just means no professional reviewer (a security firm, the CryptoSkill team, or a verified independent researcher) has signed off on it. There are no audit reports to read. How reviewer levels work →

SKILL.md → SOURCE.md → TRUST.auto.yaml → Browse directory →

Auto-generated by cryptoskill/extract-capabilities/0.3.0 · hosted-service list version 2026-04-26 · how this is computed

Source

View on GitHub →