ClawHub
Back to skill

Security audit

Empire Builder

Security checks across malware telemetry and agentic risk

Overview

Empire Builder is a clearly disclosed live blockchain integration skill, but users must treat its write flows and API keys carefully.

Install only if you intend to operate Empire Builder live mainnet workflows. Prefer `x-api-key` headers, avoid putting secrets in URLs, use narrowly scoped credentials, and manually verify chain ID, vault address, Empire ID, recipients, amounts, calldata, and transaction simulation before signing or broadcasting.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Findings (2)

Missing User Warnings

Medium
Confidence
95% confidence
Finding
The documentation explicitly allows API keys to be supplied via the `api_key` query parameter. Query parameters are commonly logged by browsers, reverse proxies, CDNs, analytics tools, and server access logs, which can expose credentials beyond their intended audience. In a skill that automates write-capable treasury and deployment actions, this increases the chance of credential leakage and subsequent unauthorized API use.

Missing User Warnings

Medium
Confidence
87% confidence
Finding
The document states that hosts and chains are live and that prepare/broadcast flows update on-chain balances, but it does not pair that with a strong operational warning about irreversibility, environment confirmation, or safe-use guardrails. In a skill that can prepare and broadcast mainnet `executeBatch` transactions, this omission materially increases the risk of accidental real-value transfers, burns, or misdirected distributions.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal