Test

Security checks across malware telemetry and agentic risk

Overview

This is a straightforward crypto data CLI skill, but users should handle wallet and exchange data carefully.

Install only a trusted `onchain` CLI, use read-only exchange API keys with trading and withdrawals disabled, avoid pasting secrets into chats or logs, and review `~/.config/onchain/config.json5` for saved wallets or credentials before using it on shared systems.

SkillSpector

By NVIDIA

Vulnerability Patterns

Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (2)

Missing User Warnings

Medium

Confidence: 94% confidence
Finding: The skill advertises access to wallet balances, transaction history, portfolio positions, and centralized exchange holdings/history, but provides no privacy warning, consent guidance, or data-handling constraints. In an agent context, this can normalize requesting or exposing highly sensitive financial information, increasing the risk of unnecessary collection, disclosure, or misuse of a user's crypto and exchange data.

Missing User Warnings

Medium

Confidence: 97% confidence
Finding: The configuration section instructs users to provide exchange and wallet API keys, including Coinbase and Binance secrets, without any warning about credential sensitivity, secure storage, scoping, or log exposure. In an agent-operated environment, this creates a meaningful risk that powerful API credentials could be mishandled, over-permissioned, echoed in output, or stored insecurely, potentially exposing account data and enabling unauthorized actions depending on key permissions.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal