Back to skill

Security audit

forgex-cli

Security checks across malware telemetry and agentic risk

Overview

This is a coherent crypto wallet and trading skill, but it gives an agent high-impact control over private keys and real on-chain funds without enough safety boundaries.

Review before installing. Use only isolated, low-value wallets, verify the npm package and publisher independently, avoid pasting real private keys or important passwords into agent-visible commands, prefer testnet and --dry-run first, avoid plaintext CSV backups, and require explicit human approval before any mainnet transfer, token launch, sniping, volume bot, or price-robot action.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Findings (3)

Missing User Warnings

Medium
Confidence
90% confidence
Finding
The documentation repeatedly demonstrates passing wallet passwords and private-key-adjacent secrets directly on the command line. On most systems, CLI arguments can be exposed through shell history, process listings, logging, screenshots, and terminal session capture, which creates a realistic credential disclosure risk for users following the examples verbatim.

Missing User Warnings

Medium
Confidence
78% confidence
Finding
The skill documents destructive operations like deleting wallet groups with force semantics but does not clearly warn that the action may be irreversible and may remove access metadata or locally stored wallet material. In a wallet-management context, users may execute these commands assuming they are recoverable, leading to permanent operational loss or loss of funds if backups are incomplete.

Missing User Warnings

High
Confidence
96% confidence
Finding
This section documents importing, exporting, and handling wallet backups, CSV files containing private keys, and encrypted JSON archives without strong security guidance. Because the skill centers on multi-wallet Solana operations, these examples normalize storage and movement of highly sensitive key material, increasing the chance that users create plaintext backups, mishandle files, or expose secrets through weak passwords and unsafe file locations.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal

Static analysis

No suspicious patterns detected.