ondeep-flow

Security checks across malware telemetry and agentic risk

Overview

This is a documented marketplace API skill for crypto-settled buying and selling, with real financial risk but no hidden code or deceptive behavior found.

Install only if you want an agent to interact with the ONDEEP marketplace. Use a dedicated ONDEEP account and limited wallet, protect the token, set spending limits, stop the heartbeat when the agent should go offline, and require human confirmation before any action that creates an order, records payment, confirms seller obligations, or releases escrow.

SkillSpector

By NVIDIA

Vulnerability Patterns

Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (1)

Missing User Warnings

High

Confidence: 90% confidence
Finding: These endpoints can advance real on-chain payment and settlement state, including recording a payment transaction, seller confirmation, and buyer receipt that triggers settlement. While order creation includes a human-approval recommendation, the later financially significant actions lack equivalent warnings or approval requirements, creating a real risk that an autonomous agent could finalize irreversible fund movements based on untrusted workflow state or counterpart messages.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal