ClawHub
Back to skill

Security audit

PayAll CLI

Security checks across malware telemetry and agentic risk

Overview

This Payall CLI skill fits crypto card management, but it gives an agent sensitive financial powers including private keys, full card details, and confirmation-skipping transfers.

Review carefully before installing. Use only a dedicated low-balance wallet, avoid giving an agent or command line your main wallet private key, do not reveal full card/CVV data unless absolutely necessary, and require explicit human confirmation for every amount, chain, destination, card application, top-up, withdrawal, or transfer.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (3)

Vague Triggers

Medium
Confidence
83% confidence
Finding
The trigger description is extremely broad and covers general phrases like wallet balance, send USDT, and card operations, which can cause the skill to activate in contexts beyond the user's intent. In a high-risk financial skill, unintended invocation increases the chance that an agent reaches sensitive auth, card, or transfer workflows without sufficiently explicit user consent.

Missing User Warnings

High
Confidence
97% confidence
Finding
The skill explicitly instructs agents to use a raw private key via `payall auth login --key <private_key>` and states this should be used for agents, normalizing direct handling of the user's blockchain secret. That creates a severe credential-exposure risk because any agent, logs, shell history, telemetry, or downstream tooling could capture the private key and enable total wallet compromise.

Missing User Warnings

High
Confidence
98% confidence
Finding
The skill documents `cards detail --reveal --json` returning full PAN, CVV, expiry, and billing data specifically 'for agents' to fill payment forms. This exposes highly sensitive payment card data to the agent context, creating obvious risks of exfiltration, retention in logs, PCI noncompliance, and fraudulent card use if mishandled.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal