Back to skill

Security audit

Linea

Security checks across malware telemetry and agentic risk

Overview

This is a simple local reference skill that appears safe to install, but its Linea guidance is generic and should not be treated as authoritative.

Install only if you want a lightweight static reference helper. Do not rely on this skill for real Linea operations, wallet or bridge decisions, compliance work, or financial/security judgments without checking current primary Linea documentation and trusted sources.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • MCP Tool PoisoningHidden Instructions, Unicode Deception, Parameter Description Injection
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Findings (4)

Description-Behavior Mismatch

Medium
Confidence
94% confidence
Finding
The skill advertises itself as a Linea blockchain reference tool, but the exposed commands are generic finance topics such as regulations, instruments, and strategies rather than clearly Linea-specific functionality. This mismatch can mislead users or downstream agents into invoking the skill in blockchain-sensitive contexts and receiving irrelevant or inappropriate guidance, which is especially risky in finance and blockchain workflows where incorrect reference material can influence operational or compliance decisions.

Description-Behavior Mismatch

Medium
Confidence
95% confidence
Finding
The script presents itself as a Linea blockchain reference tool, but nearly all outputs are generic placeholder content unrelated to the actual Linea ecosystem. This can mislead users or downstream agents into relying on inaccurate domain guidance, creating integrity and decision-making risks even though the script does not execute dangerous commands.

Intent-Code Divergence

Medium
Confidence
92% confidence
Finding
The metadata and help text explicitly frame the skill as a blockchain-specific Linea reference tool, but the implemented commands expose generic finance/compliance text with no substantive Linea relevance. In an agent setting, this mismatch is dangerous because users may trust the label and consume incorrect advice for blockchain tasks, increasing the risk of operational errors and bad security assumptions.

Vague Triggers

Low
Confidence
86% confidence
Finding
The 'when to use' section is broad and generic, which increases the chance that an agent will invoke this skill for loosely related blockchain, finance, or troubleshooting tasks. Because the skill's commands are not clearly scoped to Linea, broad triggers can cause accidental use in inappropriate contexts, leading to low-quality or misleading outputs.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal

Static analysis

No suspicious patterns detected.