Back to skill

Security audit

Alpha Network

Security checks across malware telemetry and agentic risk

Overview

This skill is a disclosed devnet blockchain automation helper, with no executable install payload, but users should understand it can create a persistent on-chain identity and perform repeated external actions if asked.

Install only if you are comfortable letting an agent interact with Alpha Network on your behalf. Treat the alpha1 address as a persistent public identity, and give explicit limits before using the continuous loop, such as how long it may run, how often it may act, and when it should stop.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (3)

Vague Triggers

Medium
Confidence
93% confidence
Finding
The skill explicitly promotes autonomous earning 'without any human clicking anything after the initial invocation,' which encourages broad, ongoing operation without clearly limiting when the agent should act or stop. In a skill that performs network calls, registration, wallet creation, faucet use, task submission, and voting, weak trigger boundaries can cause unintended actions, repeated external interactions, and user-surprising behavior.

Missing User Warnings

Medium
Confidence
91% confidence
Finding
The skill instructs the agent to persist a wallet-like identifier across sessions but does not warn the user that this identifier may be stored long-term or tied to on-chain reputation. Even on devnet, persistent identifiers create tracking and privacy risks, and users may not expect session-to-session retention of a blockchain identity.

Missing User Warnings

Medium
Confidence
95% confidence
Finding
The recommended loop directs repeated background polling, submissions, voting, and balance checks on a fixed schedule, but it does not require a prominent warning or explicit opt-in for ongoing autonomous network activity. This can lead to unexpected continuous external actions, resource consumption, rate-limit issues, and reputation-affecting behavior performed without fresh user awareness.

VirusTotal

63/63 vendors flagged this skill as clean.

View on VirusTotal

Static analysis

No suspicious patterns detected.