ClawHub

Find Arbitrage Opps

Security checks across malware telemetry and agentic risk

Overview

The skill performs the advertised Hummingbot price-comparison task, but users should be careful with its remote prerequisite command and API credential handling.

Install only if you intend to use it with a trusted Hummingbot API. Inspect or avoid the remote prerequisite command, use a strong API password instead of admin/admin, keep the API bound to localhost or HTTPS on a trusted network, and run the script from a directory where its documented .env fallback will not pick up unrelated secrets.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
  • MCP Least PrivilegeUnderdeclared Capability, Wildcard Permission, Missing Permission Declaration
Findings (8)

Lp3

Medium
Category
MCP Least Privilege
Confidence
91% confidence
Finding
The skill documentation instructs users to run shell and Python commands that access environment variables and network resources, yet it declares no corresponding permissions. This creates a transparency and trust problem: users and platforms cannot accurately assess the skill's operational scope, and hidden network/env access can expose secrets such as API credentials or interact with external systems unexpectedly.

Context-Inappropriate Capability

Medium
Confidence
90% confidence
Finding
The script reads credentials from local .env files and environment variables, including user-home locations, even though its stated purpose is only to compare market prices. That behavior expands the trust boundary and can silently consume sensitive secrets if the script is run in a broader environment than intended.

Missing User Warnings

Medium
Confidence
97% confidence
Finding
The prerequisite command uses `bash <(curl -s ...)` to download and immediately execute a remote script without integrity verification, pinning, or any warning to the user. If the upstream source, network path, or repository is compromised, arbitrary code will run on the user's machine with the user's privileges, potentially stealing API keys, `.env` secrets, or modifying the local trading environment.

Missing User Warnings

Medium
Confidence
94% confidence
Finding
The script sends Basic Auth credentials obtained from the environment to the configured API endpoint without confirming the destination or warning the user. Because the default URL is plain HTTP and the endpoint is environment-controlled, credentials could be exposed to interception or transmitted to an unintended host.

Credential Access

High
Category
Privilege Escalation
Content
def load_env():
    """Load environment from .env files."""
    for path in ["hummingbot-api/.env", os.path.expanduser("~/.hummingbot/.env"), ".env"]:
        if os.path.exists(path):
            with open(path) as f:
Confidence
83% confidence
Finding
.env

Credential Access

High
Category
Privilege Escalation
Content
def load_env():
    """Load environment from .env files."""
    for path in ["hummingbot-api/.env", os.path.expanduser("~/.hummingbot/.env"), ".env"]:
        if os.path.exists(path):
            with open(path) as f:
                for line in f:
Confidence
78% confidence
Finding
.env"

Credential Access

High
Category
Privilege Escalation
Content
def load_env():
    """Load environment from .env files."""
    for path in ["hummingbot-api/.env", os.path.expanduser("~/.hummingbot/.env"), ".env"]:
        if os.path.exists(path):
            with open(path) as f:
                for line in f:
Confidence
78% confidence
Finding
.env"

Credential Access

High
Category
Privilege Escalation
Content
def load_env():
    """Load environment from .env files."""
    for path in ["hummingbot-api/.env", os.path.expanduser("~/.hummingbot/.env"), ".env"]:
        if os.path.exists(path):
            with open(path) as f:
                for line in f:
Confidence
78% confidence
Finding
.env"

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal