KarmaBank

Security checks across malware telemetry and agentic risk

Overview

Review before installing: the skill is finance-oriented, asks for Circle wallet credentials, and depends on unreviewed local wallet code while providing only scaffold documentation and package metadata.

Install only after reviewing the full source and the Circle wallet dependency it references. Use sandbox or testnet credentials, avoid confirmation-bypass flags for borrow or repay actions, and do not provide production Circle credentials unless the wallet, ledger, and transaction limits are clearly audited.

SkillSpector

By NVIDIA

Vulnerability Patterns

Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (1)

Missing User Warnings

Medium

Confidence: 89% confidence
Finding: The skill advertises wallet creation, borrowing, and repayment flows tied to external services and API keys, but it does not clearly warn users that these actions may interact with real third-party financial infrastructure or move funds. In an agent setting, ambiguous financial operations can lead to unintended transactions, unsafe credential use, or users invoking sensitive commands without understanding the consequences.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal