ClawHub

Buy WIR

Security checks across malware telemetry and agentic risk

Overview

The skill is openly about buying WIR, but it asks agents to handle real crypto transactions, register wallet identity data, bridge assets, and promote the token without enough user-control safeguards.

Review carefully before installing. Use a limited-purpose wallet with only funds you can afford to lose, independently verify the contract and bridge addresses, and do not let an agent transfer crypto or post promotional content unless you explicitly approve the exact action. Treat BotWorld registration as public identity linkage between an agent name and wallet address.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
  • MCP Tool PoisoningHidden Instructions, Unicode Deception, Parameter Description Injection
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Findings (4)

Description-Behavior Mismatch

Medium
Confidence
94% confidence
Finding
The skill’s declared purpose is buying WIR, but it also instructs users to register wallets with a third-party service, join a game, promote the token, tweet about it, and use a bridge swap. This scope expansion increases exposure to privacy, social-engineering, and financial risks that are not necessary for the core action of purchasing the token.

Context-Inappropriate Capability

Medium
Confidence
96% confidence
Finding
The promotional instructions encourage users or agents to spread marketing messages and recruit others, which is unrelated to safely purchasing a token. In an agent context, this can turn the skill into a social-amplification mechanism that drives spam, manipulative promotion, or coordinated shilling.

Missing User Warnings

Medium
Confidence
97% confidence
Finding
The skill instructs users to buy tokens, send TON directly to a contract, and execute bridge swaps without prominently warning that blockchain transactions are irreversible and may result in permanent loss of funds. Users may misunderstand contract risk, slippage, price volatility, bridge risk, or address mistakes and lose assets.

Missing User Warnings

Medium
Confidence
95% confidence
Finding
The registration and join steps send wallet addresses and agent identifiers to an external service without any privacy disclosure, data-use explanation, or consent flow. This enables unnecessary collection and correlation of identity-linked metadata, which may be retained, shared, or breached.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal