ClawHub

Tator Trader - AI Trading

Security checks across malware telemetry and agentic risk

Overview

This skill is transparent about crypto trading, but it includes wallet broadcast examples that could execute irreversible transactions without a clear required user approval step.

Install only if you are comfortable connecting this skill to a paid external crypto transaction builder. Use a small dedicated wallet, never provide private keys or seed phrases, require explicit approval before every signature or broadcast, and verify recipient, spender, chain, value, approvals, calldata, slippage, fees, and expected outcome before signing.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • MCP Tool PoisoningHidden Instructions, Unicode Deception, Parameter Description Injection
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (2)

Intent-Code Divergence

Medium
Confidence
92% confidence
Finding
The documentation states the skill only builds unsigned transactions, but the AgentWallet example immediately submits them to a send-transaction endpoint after only a comment-level reminder to verify. In an agent setting, examples often become implementation templates, so this mismatch can lead integrators to enable automatic broadcasting of AI-generated transactions, defeating the stated safety model and increasing risk of unauthorized fund movement.

External Transmission

Medium
Category
Data Exfiltration
Content
if (result.type === 'transaction') {
  for (const tx of result.transactions) {
    // VERIFY before signing — check to, value, chainId, description
    const broadcast = await fetch(
      'https://frames.ag/api/wallets/{username}/actions/send-transaction',
      {
        method: 'POST',
Confidence
90% confidence
Finding
fetch( 'https://frames.ag/api/wallets/{username}/actions/send-transaction', { method: 'POST'

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal