Back to skill

Security audit

Clawdentials Escrow

Security checks across malware telemetry and agentic risk

Overview

This skill is purpose-aligned for escrow and payments, but it gives agents access to sensitive keys and real fund-moving tools without enough safety scoping.

Install only if you are comfortable using a real payment integration. Verify and pin the npm MCP package before enabling it, keep apiKey and nsec in a secret manager, never paste them into prompts or logs, use small test amounts first, and require manual approval for every escrow release or withdrawal.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Findings (3)

Missing User Warnings

Medium
Confidence
95% confidence
Finding
The skill documents tools that return credentials (`agent_register`) and move funds (`withdraw_request`, `withdraw_crypto`, escrow actions) but does not place strong operational warnings alongside the tool list about secret handling, destination verification, and irreversible payout risk. In an agent context, this increases the chance that an automated system will expose API keys or execute withdrawals/disbursements without adequate confirmation, leading to account takeover or loss of funds.

Missing User Warnings

Medium
Confidence
90% confidence
Finding
The API reference shows agent registration returning highly sensitive credentials, including an API key and a Nostr private key (`nsec`), without any warning about secure handling, storage, redaction, or one-time visibility. In an agent skill context, this is dangerous because downstream agents or users may log, echo, persist, or transmit these secrets insecurely, leading to account takeover or unauthorized actions.

Missing User Warnings

Medium
Confidence
85% confidence
Finding
The documentation advertises escrow, deposit, and withdrawal operations that can move or release funds, but it provides no cautions about irreversible actions, authorization checks, confirmation requirements, or safe usage patterns. In an agent-driven environment, this increases the chance that an automated system invokes money-moving operations without adequate human review or anti-abuse controls.

VirusTotal

63/63 vendors flagged this skill as clean.

View on VirusTotal

Static analysis

No suspicious patterns detected.