ClawHub
Back to skill

Security audit

Chain Sensei

Security checks across malware telemetry and agentic risk

Overview

This skill is purpose-aligned for blockchain analysis, but its paid x402 features could spend wallet funds without clear per-request consent controls.

Install only if you are comfortable with an agent-facing blockchain skill that may use wallet funds for premium analysis. Keep premium mode disabled unless needed, use a dedicated low-balance wallet, and require the agent to show the exact price and get approval before every paid request or alert setup.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (2)

Vague Triggers

Medium
Confidence
91% confidence
Finding
The skill says requests use natural language and shows broad prompts like "What's the risk of 0x1234...?" without defining strict invocation boundaries, confirmation rules, or exclusions for paid operations. In an autonomous agent setting, this can cause accidental tool activation, misrouting of ambiguous requests, or unintended escalation from free analysis into premium actions based on loosely phrased user input.

Missing User Warnings

Medium
Confidence
96% confidence
Finding
The premium section states the agent will automatically handle x402 payment negotiation, but it does not prominently warn that user requests may cause paid transactions. In autonomous or semi-autonomous environments, this creates a real risk of silent spending, especially when combined with broad natural-language invocation guidance and low per-request pricing that can accumulate unnoticed.

VirusTotal

VirusTotal findings are pending for this skill version.

View on VirusTotal