Dagny Nostr (nak)

Security checks across malware telemetry and agentic risk

Overview

This skill is purpose-aligned for using the nak CLI to post and read Nostr activity, but users should treat publishing and key handling as sensitive.

Before installing, review the remote install script or use a pinned/package-manager install if available. Use a dedicated Nostr key for automation, keep NOSTR_SECRET_KEY out of chats, logs, shell history, screenshots, and repositories, and assume anything published to a Nostr relay is public and durable.

SkillSpector

By NVIDIA

Vulnerability Patterns

Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (1)

Missing User Warnings

Medium

Confidence: 92% confidence
Finding: The skill includes ready-to-run publishing commands that use the signing key to post content to a public Nostr relay, but it does not clearly warn that publication is public, typically permanent/replicated, and attributable to the holder of the key. In this context, the skill is specifically designed for public posting, which makes the behavior expected, but the lack of explicit privacy and irreversible-publication warnings still creates a real risk of accidental data disclosure or unintended signed actions.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal