Nostr Army Knife (nak)

Security checks across malware telemetry and agentic risk

Overview

This skill is a documentation-only helper for the legitimate nak Nostr CLI, but it involves sensitive keys, public posts, payments, uploads, and MCP access that users should handle carefully.

Install this only if you already intend to use nak. Use a dedicated or limited Nostr key where possible, avoid putting main secret keys in logs, scripts, shared terminals, or broad environment variables, and manually review any command that posts publicly, pays an invoice, uploads a file, changes relays or servers, or starts MCP mode.

SkillSpector

By NVIDIA

Vulnerability Patterns

Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (1)

Missing User Warnings

Medium

Confidence: 93% confidence
Finding: The skill documentation encourages use of highly sensitive operations—passing secret keys on the command line, setting long-lived secret environment variables, paying Lightning invoices, publishing signed events, and uploading files—without clear warnings about credential exposure, shell history/process-list leakage, irreversible network publication, payment finality, or untrusted remote endpoints. In an agentic setting, this is more dangerous because an automated agent may execute examples directly, mishandle secrets, or trigger real external side effects without sufficient confirmation.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal