Etherlink Skill

Security checks across malware telemetry and agentic risk

Overview

The skill is purpose-aligned for Etherlink blockchain use, but it asks users to connect private-key signing authority to an unpinned external MCP server that can perform real on-chain writes.

Use read-only mode unless you truly need writes. Before installing, verify and pin the external MCP server package, avoid valuable mainnet private keys, prefer a dedicated low-balance or testnet wallet, and manually confirm every transaction’s network, recipient, amount, gas, and contract calldata.

SkillSpector

By NVIDIA

Vulnerability Patterns

Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (2)

Missing User Warnings

Medium

Confidence: 93% confidence
Finding: The skill explicitly documents transaction sending on a blockchain mainnet/testnet but does not warn that signed on-chain transfers are irreversible and may incur real financial loss on mainnet. In a blockchain interaction skill, missing this warning materially increases the chance of accidental asset transfer, especially because users may treat example prompts as safe defaults.

Missing User Warnings

High

Confidence: 98% confidence
Finding: The documentation instructs users to place an `EVM_PRIVATE_KEY` directly in MCP configuration without any warning about secret handling, storage risks, or scope of compromise. Because this skill enables blockchain transactions, exposure of that key can lead directly to unauthorized signing and theft of all assets controlled by the wallet.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal