Back to skill

Security audit

bybit-order-book

Security checks across malware telemetry and agentic risk

Overview

This skill appears to perform legitimate Bybit order-book data work, but it includes under-scoped automation that reportedly bypasses Cloudflare protections and uses risky system-level Python installation guidance.

Review carefully before installing. Prefer a version that uses Bybit's official APIs or documented data exports, avoids Cloudflare-bypass or anti-detection tooling, installs dependencies in a virtual environment, and limits file writes to the intended data and report directories.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
  • MCP Least PrivilegeUnderdeclared Capability, Wildcard Permission, Missing Permission Declaration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Findings (3)

Lp3

Medium
Category
MCP Least Privilege
Confidence
81% confidence
Finding
The skill instructs the agent to read and write local files (`./data/raw`, `./data/processed`, `./reports`) but does not declare corresponding permissions. Undeclared file access weakens policy enforcement and transparency, increasing the chance that an agent executes filesystem operations the user or platform did not explicitly authorize.

Context-Inappropriate Capability

Medium
Confidence
97% confidence
Finding
The script explicitly advertises use of undetected-chromedriver to bypass Cloudflare protection, which moves beyond ordinary browser automation into anti-bot evasion. In a skill intended to download public market data, embedding evasion tooling creates a capability that can circumvent access controls and violate site protections, making misuse substantially easier.

Natural-Language Policy Violations

High
Confidence
99% confidence
Finding
The explicit statement that the tool uses undetected-chromedriver to bypass Cloudflare protection indicates deliberate anti-detection behavior. That is dangerous because it normalizes and operationalizes circumvention of a third party's protective controls, which can be repurposed for unauthorized scraping or policy-violating automation.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal

Static analysis

No suspicious patterns detected.