OpenMM Exchange Setup
Security checks across malware telemetry and agentic risk
Overview
This is a disclosed setup guide for OpenMM exchange API credentials, with sensitive but purpose-aligned steps users should handle carefully.
Install only if you intend to connect OpenMM to cryptocurrency exchanges. Create API keys with the minimum permissions needed, keep withdrawals disabled, prefer IP whitelisting, review the npm packages before running them, store secrets carefully, and only run the sudo time-sync command if you explicitly approve it.
SkillSpector
By NVIDIA
Vulnerability Patterns
- Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
- Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
- Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
- Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
- Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
VirusTotal
66/66 vendors flagged this skill as clean.