WalletPilot 7715

Security checks across malware telemetry and agentic risk

Overview

This docs-only wallet automation skill is transparent about delegated crypto transaction authority, but users should treat it as real financial access.

Install only if you intentionally want an agent to perform crypto transactions. Use small spend limits, short expirations, strict chain and contract allowlists, verify recipients and swap calldata, pin and review the SDK version, protect the WalletPilot API key, and revoke permissions when finished.

SkillSpector

By NVIDIA

Vulnerability Patterns

Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (1)

Missing User Warnings

Medium

Confidence: 91% confidence
Finding: The skill provides concrete examples for token transfers and DEX swaps but does not explicitly warn that on-chain transactions are irreversible, may involve slippage, malicious token approvals, or permanent loss of funds. In a wallet-execution skill, omission of these warnings materially increases the chance that an agent operator or user treats transaction execution as routine and underestimates financial risk.

VirusTotal

47/47 vendors flagged this skill as clean.

View on VirusTotal