Crypto Wallet
Security checks across malware telemetry and agentic risk
Overview
This crypto-wallet skill is transparent and markdown-only, but it can perform irreversible withdrawals through an authenticated external API whose default endpoint and credential scope need review.
Install only if you trust the AIOT wallet provider and have verified the API base URL. Do not use real funds against a development or unverified endpoint, and enter a transaction PIN only after manually checking the coin, network, destination address, amount, fee quote, and withdrawal confirmation.
SkillSpector
By NVIDIA
Vulnerability Patterns
- Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
- Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
- Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
- Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
- Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
VirusTotal
64/64 vendors flagged this skill as clean.