ClawHub

Binance Dca Tool

Security checks across malware telemetry and agentic risk

Overview

This skill appears to be a real Binance DCA helper, but it can spend live exchange funds without built-in confirmation or spending limits.

Install only if you intentionally want an agent-accessible Binance trading helper. Use Binance testnet first, create a restricted API key with withdrawals disabled, apply IP restrictions and small limits where possible, avoid unattended cron jobs unless capped, and require explicit confirmation before any live buy.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • MCP Least PrivilegeUnderdeclared Capability, Wildcard Permission, Missing Permission Declaration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Findings (3)

Lp3

Medium
Category
MCP Least Privilege
Confidence
91% confidence
Finding
The skill enables shell-based execution of trading operations but does not declare any permissions or capability boundaries. In an agent setting, undocumented shell access increases the chance of unintended command execution, weak review, and misuse of live trading functionality tied to API credentials.

Vague Triggers

Medium
Confidence
84% confidence
Finding
The trigger language is broad enough that the skill may activate on general investing or crypto discussion, not just explicit requests to use Binance DCA tooling. Over-broad activation is dangerous here because the skill can transition from advisory context into account-linked shell actions that inspect balances or place live orders.

Missing User Warnings

High
Confidence
96% confidence
Finding
The documentation presents live buy execution commands for real exchange orders without a prominent warning that they can spend real funds immediately. In a financial trading context, omission of an explicit real-money warning and confirmation requirement materially increases the risk of accidental purchases, loss of funds, and unauthorized trading activity.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal