ClawHub

NEXUS Ap2 Batched Settle

Security checks across malware telemetry and agentic risk

Overview

This is a coherent payment-settlement skill, but it deserves Review because it can create payment mandates and prepare wallet transactions through a hosted service with limited adjacent safety warnings.

Install only if you intentionally want an agent-payment workflow tied to the NEXUS hosted service. Use testnet and sandbox signatures first, verify the endpoint and network, never share wallet seeds or private keys, and independently check every amount, destination, currency, issuer, mandate, and trust line before signing or broadcasting any XRPL transaction.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Findings (4)

Missing User Warnings

Medium
Confidence
88% confidence
Finding
The README includes copy-pastable commands that create payment mandates and prepare a batch settlement transaction without an explicit warning that these actions may create financial obligations or lead directly to blockchain payment execution after signing. In a payment-oriented agent skill, omission of such warnings increases the risk of accidental authorization, misuse by downstream agents, and social-engineering-style prompting around real funds.

External Transmission

Medium
Category
Data Exfiltration
Content
```bash
# 1. Mint a cart mandate
MID=$(curl -sX POST https://ai-service-hub-15.emergent.host/api/ap2/mandates/create \
  -H "Content-Type: application/json" \
  -d '{
    "mandate_type": "cart",
Confidence
83% confidence
Finding
curl -sX POST https://ai-service-hub-15.emergent.host/api/ap2/mandates/create \ -H "Content-Type: application/json" \ -d

External Transmission

Medium
Category
Data Exfiltration
Content
}' | jq -r .mandate_id)

# 2. Build unsigned batch tx (using multiple mandate IDs)
curl -X POST https://ai-service-hub-15.emergent.host/api/ap2/payments/batch \
  -H "Content-Type: application/json" \
  -d "{\"mandate_ids\":[\"$MID\"],\"payer_address\":\"r<your-xrpl-address>\",\"chain\":\"xrpl\",\"mode\":\"ALLORNOTHING\"}"
```
Confidence
89% confidence
Finding
curl -X POST https://ai-service-hub-15.emergent.host/api/ap2/payments/batch \ -H "Content-Type: application/json" \ -d

External Transmission

Medium
Category
Data Exfiltration
Content
For an **Intent Mandate** (agent autonomy, e.g. "spend up to 10 XRP this week"):

```bash
curl -X POST https://ai-service-hub-15.emergent.host/api/ap2/mandates/create \
  -H "Content-Type: application/json" \
  -d '{
    "mandate_type": "intent",
Confidence
93% confidence
Finding
curl -X POST https://ai-service-hub-15.emergent.host/api/ap2/mandates/create \ -H "Content-Type: application/json" \ -d '{ "mandate_type": "intent", "user_did": "did:agent:my-agent-id",

VirusTotal

VirusTotal findings are pending for this skill version.

View on VirusTotal