CryptoRank

Security checks across malware telemetry and agentic risk

Overview

This skill appears to fetch and format public CryptoRank market data, with no evidence of hidden credential use, persistence, or destructive behavior.

Install only if you are comfortable with the skill making outbound requests to CryptoRank public web/API endpoints and returning crypto opportunity links, including airdrop task or claim links. Treat the output as informational, verify any crypto links before connecting a wallet, and do not provide wallet secrets or sensitive credentials because this skill does not need them.

SkillSpector

By NVIDIA

Vulnerability Patterns

MCP Least PrivilegeUnderdeclared Capability, Wildcard Permission, Missing Permission Declaration
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (1)

Lp3

Medium

Category: MCP Least Privilege
Confidence: 88% confidence
Finding: The skill metadata declares no permissions, but the documentation explicitly indicates access to environment variables and external network resources via Python and CryptoRank integration. This creates a transparency and policy gap: operators may approve or run the skill without understanding that it can read configuration from the environment and make outbound requests. In a skill ecosystem, undeclared capabilities weaken sandboxing and trust decisions, and can enable unintended data exposure or external data exfiltration if the wrapper code is modified or misused.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal