Project 0 - DeFi Native Prime Broker

Security checks across malware telemetry and agentic risk

Overview

This DeFi skill is real and disclosed, but it gives an agent raw Solana wallet signing access and does not consistently require confirmation before moving funds.

Install only if you are comfortable using a dedicated, low-balance Solana wallet with this agent. Do not use a primary wallet or seed-derived key, and require the agent to show exact amounts, protocols, destination accounts, fees, slippage, and third-party data sharing before every signing step.

SkillSpector

By NVIDIA

Vulnerability Patterns

Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (1)

Credential Access

High

Category: Privilege Escalation
Content: import { Keypair } from "@solana/web3.js"; import fs from "fs"; // keypairPath from user message, or WALLET_KEYPAIR from .env const wallet = Keypair.fromSecretKey( Uint8Array.from(JSON.parse(fs.readFileSync(keypairPath, "utf-8"))), );
Confidence: 89% confidence
Finding: .env

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal