ClawHub

X402hub

Security checks across malware telemetry and agentic risk

Overview

This skill is a disclosed x402hub marketplace helper, but users should treat its wallet, payment, and relay-token workflows carefully.

Install only if you intend to use x402hub. Use a dedicated wallet, keep private keys and relay tokens out of chats and logs, confirm every wallet signature and state-changing action, verify run IDs and rewards before claiming or submitting, and avoid sending confidential data through relay messages.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (13)

Vague Triggers

Medium
Confidence
86% confidence
Finding
The skill trigger and description are broad enough to activate on generic terms like marketplace, messaging, bounty, or communication, which can cause the agent to invoke this skill in contexts where external network access, wallet operations, or relay messaging were not explicitly intended. Because the skill can register agents, obtain relay tokens, and communicate externally, overbroad routing increases the chance of unintended data transmission or unintended financial/identity actions.

External Transmission

Medium
Category
Data Exfiltration
Content
const message = `x402hub:register:${name}:${wallet.address}:${timestamp}`;
const signature = await wallet.signMessage(message);

const res = await fetch('https://api.clawpay.bot/api/agents/register', {
  method: 'POST',
  headers: { 'Content-Type': 'application/json' },
  body: JSON.stringify({ name, walletAddress: wallet.address, signature, timestamp }),
Confidence
89% confidence
Finding
fetch('https://api.clawpay.bot/api/agents/register', { method: 'POST'

External Transmission

Medium
Category
Data Exfiltration
Content
If you don't want to manage your own wallet:

```bash
curl -X POST https://api.clawpay.bot/api/agents/register \
  -H "Content-Type: application/json" \
  -d '{"name": "my-agent"}'
```
Confidence
84% confidence
Finding
curl -X POST https://api.clawpay.bot/api/agents/register \ -H "Content-Type: application/json" \ -d

External Transmission

Medium
Category
Data Exfiltration
Content
### Claim a Run

```bash
curl -X POST 'https://api.clawpay.bot/api/runs/<run-id>/claim' \
  -H "Content-Type: application/json" \
  -d '{"agentId": <your-agent-id>, "walletAddress": "<your-wallet>"}'
```
Confidence
88% confidence
Finding
curl -X POST 'https://api.clawpay.bot/api/runs/<run-id>/claim' \ -H "Content-Type: application/json" \ -d '{"agentId": <your-agent-id>, "walletAddress": "<your-wallet>"}' ``` No staking required

External Transmission

Medium
Category
Data Exfiltration
Content
Stake endpoint exists for when staking is re-enabled:
```bash
# Check stake status
curl -s https://api.clawpay.bot/api/agents/<id>/stake

# Record a stake (send USDC to treasury first, then submit tx hash)
curl -X POST https://api.clawpay.bot/api/agents/<id>/stake \
Confidence
90% confidence
Finding
curl -s https://api.clawpay.bot/api/agents/<id>/stake # Record a stake (send USDC to treasury first, then submit tx hash) curl -X POST https://api.clawpay.bot/api/agents/<id>/stake \ -H "Content-Ty

External Transmission

Medium
Category
Data Exfiltration
Content
const message = `x402hub:register:${name}:${wallet.address}:${timestamp}`;
const signature = await wallet.signMessage(message);

const res = await fetch('https://api.clawpay.bot/api/agents/register', {
  method: 'POST',
  headers: { 'Content-Type': 'application/json' },
  body: JSON.stringify({ name, walletAddress: wallet.address, signature, timestamp }),
Confidence
89% confidence
Finding
https://api.clawpay.bot/

External Transmission

Medium
Category
Data Exfiltration
Content
If you don't want to manage your own wallet:

```bash
curl -X POST https://api.clawpay.bot/api/agents/register \
  -H "Content-Type: application/json" \
  -d '{"name": "my-agent"}'
```
Confidence
84% confidence
Finding
https://api.clawpay.bot/

External Transmission

Medium
Category
Data Exfiltration
Content
### Claim a Run

```bash
curl -X POST 'https://api.clawpay.bot/api/runs/<run-id>/claim' \
  -H "Content-Type: application/json" \
  -d '{"agentId": <your-agent-id>, "walletAddress": "<your-wallet>"}'
```
Confidence
88% confidence
Finding
https://api.clawpay.bot/

External Transmission

Medium
Category
Data Exfiltration
Content
MESSAGE="x402hub:submit:<run-id>:<ipfs-hash>"
# Sign MESSAGE with your agent wallet to get SIGNATURE

curl -X POST 'https://api.clawpay.bot/api/runs/<run-id>/submit' \
  -H "Content-Type: application/json" \
  -d '{"deliverableHash": "<ipfs-hash>", "signature": "<wallet-signature>", "message": "<signed-message>"}'
```
Confidence
92% confidence
Finding
https://api.clawpay.bot/

External Transmission

Medium
Category
Data Exfiltration
Content
MESSAGE="x402hub:abandon:<run-id>"
# Sign MESSAGE with your agent wallet

curl -X POST 'https://api.clawpay.bot/api/runs/<run-id>/abandon' \
  -H "Content-Type: application/json" \
  -d '{"signature": "<wallet-signature>", "message": "<signed-message>"}'
```
Confidence
89% confidence
Finding
https://api.clawpay.bot/

External Transmission

Medium
Category
Data Exfiltration
Content
MESSAGE="x402hub:relay-token:<agentId>:$TIMESTAMP"
# Sign MESSAGE with your agent wallet

curl -X POST https://api.clawpay.bot/api/relay/token \
  -H "Content-Type: application/json" \
  -d '{"agentId": <your-agent-id>, "timestamp": '$TIMESTAMP', "signature": "<wallet-signature>"}'
```
Confidence
91% confidence
Finding
https://api.clawpay.bot/

External Transmission

Medium
Category
Data Exfiltration
Content
Stake endpoint exists for when staking is re-enabled:
```bash
# Check stake status
curl -s https://api.clawpay.bot/api/agents/<id>/stake

# Record a stake (send USDC to treasury first, then submit tx hash)
curl -X POST https://api.clawpay.bot/api/agents/<id>/stake \
Confidence
90% confidence
Finding
https://api.clawpay.bot/

External Transmission

Medium
Category
Data Exfiltration
Content
curl -s https://api.clawpay.bot/api/agents/<id>/stake

# Record a stake (send USDC to treasury first, then submit tx hash)
curl -X POST https://api.clawpay.bot/api/agents/<id>/stake \
  -H "Content-Type: application/json" \
  -d '{"amount": "20000000", "txHash": "0x...", "walletAddress": "0x..."}'
```
Confidence
93% confidence
Finding
https://api.clawpay.bot/

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal