Etherscan
Security checks across malware telemetry and agentic risk
Overview
This skill is a read-only guide for querying Etherscan-compatible APIs, with the main caution being safe handling of an Etherscan API key.
Install only if you are comfortable letting the agent use your Etherscan API key to query blockchain data. Keep the key out of shared chats, logs, and committed files; rotate it if exposed; and review generated URLs before sharing them because addresses, transaction hashes, and block ranges may reveal what you investigated.
SkillSpector
By NVIDIA
Vulnerability Patterns
- Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
- Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
- Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
- Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
- Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
VirusTotal
56/56 vendors flagged this skill as clean.