Onchain Test

Security checks across malware telemetry and agentic risk

Overview

The skill is clearly for crypto portfolio lookup, but it deserves review because it can use sensitive exchange API secrets through an external npm CLI not included in the reviewed artifact.

Only install this if you trust the @cyberdrk/onchain npm package. Use read-only exchange API keys with trading and withdrawals disabled, keep secrets out of prompts, logs, screenshots, and version control, and avoid storing credentials in shared project directories.

SkillSpector

By NVIDIA

Vulnerability Patterns

Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (2)

Missing User Warnings

Medium

Confidence: 92% confidence
Finding: The skill advertises access to wallet balances, portfolio data, and exchange holdings but does not warn that these requests may expose sensitive financial information. In an agent context, this increases the chance that users or downstream automation will query private addresses or exchange accounts without understanding the privacy implications.

Missing User Warnings

Medium

Confidence: 95% confidence
Finding: The configuration section lists API keys and exchange secrets needed for Coinbase and Binance access but provides no warning that these are highly sensitive credentials. In practice, users may paste secrets into insecure configs, prompts, logs, screenshots, or shared environments, which could enable unauthorized access to account balances, trading history, or exchange actions depending on key scope.

VirusTotal

63/63 vendors flagged this skill as clean.

View on VirusTotal