trader

Security checks across malware telemetry and agentic risk

Overview

This is a real crypto trading skill, but it gives an agent high-impact wallet and betting authority without clear per-transaction approval rules and includes VPN-bypass guidance for blocked prediction markets.

Review carefully before installing. Use only a dedicated low-balance wallet, verify the npm package source and version yourself, require explicit approval for every wallet export, swap, bet, sell, close, or claim, and do not use the skill to bypass geo-restrictions or platform terms.

SkillSpector

By NVIDIA

Vulnerability Patterns

Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (2)

Vague Triggers

Medium

Confidence: 90% confidence
Finding: The manifest description advertises broad financial capabilities such as trading tokens, betting on prediction markets, and checking NFT floors without defining clear user-consent boundaries or trigger constraints. In an agent setting, broad capability phrasing can encourage overly permissive invocation of wallet-affecting actions, increasing the risk of unintended or unsafe financial operations.

Natural-Language Policy Violations

High

Confidence: 99% confidence
Finding: The troubleshooting guidance explicitly tells users that blocked jurisdictions 'Need VPN' for prediction markets, which is advice to bypass geographic restrictions. This exposes users and operators to compliance, legal, and platform-enforcement risk, and in a trading skill it is especially dangerous because it normalizes evasion in a real-money context.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal