moltycash

Security checks across malware telemetry and agentic risk

Overview

This skill is for real USDC payments and is coherent, but it deserves Review because it asks users to expose wallet private keys to an unpinned external CLI that can move funds without clear irreversible-transfer or confirmation guidance.

Install only if you are comfortable giving an external CLI access to a dedicated low-balance wallet. Verify the npm package and version before use, lock down `~/.openclaw/.env`, and require manual confirmation of recipient, amount, network, and fees before every payment.

SkillSpector

By NVIDIA

Vulnerability Patterns

Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (1)

Missing User Warnings

Medium

Confidence: 92% confidence
Finding: The skill facilitates real cryptocurrency transfers using private keys, but the top-level description does not explicitly warn that payments are irreversible and may result in permanent loss of funds if the recipient, amount, or network is wrong. In an agent skill context, this omission increases the chance of unsafe or insufficiently informed invocation by users or higher-level agents.

VirusTotal

59/59 vendors flagged this skill as clean.

View on VirusTotal