ClawHub

GMGN Skill Portfolio

Security checks across malware telemetry and agentic risk

Overview

This wallet analytics skill is mostly purpose-aligned, but it needs review because it asks the agent to handle and persist a GMGN API key without enough user-facing disclosure or cleanup guidance.

Install only if you trust gmgn-cli and are comfortable giving it GMGN API access. Use a narrow, revocable API key, consider configuring it yourself rather than sending it to the agent, delete temporary key files after setup, and revoke the key when you no longer need it. Do not provide wallet seed phrases or wallet private keys.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (3)

Context-Inappropriate Capability

Medium
Confidence
97% confidence
Finding
The skill instructs the agent to run host/network diagnostic commands (`ifconfig`, `ip addr`, external IP checks) that are not necessary to answer a wallet analytics request and expand access into local system reconnaissance. This can disclose network configuration and public IP information to the model or user, increasing privacy and environment-enumeration risk beyond the stated purpose of portfolio analysis.

Context-Inappropriate Capability

High
Confidence
98% confidence
Finding
The skill includes first-time setup steps that generate a cryptographic keypair and persist a user-provided API key to disk, which is a privileged setup workflow rather than portfolio analysis. This broadens the skill from read-only data retrieval into credential provisioning and local secret management, creating unnecessary risk of secret exposure, misuse, or persistence on the host.

Missing User Warnings

Medium
Confidence
95% confidence
Finding
The instructions tell the agent to write a user-supplied API key into `~/.config/gmgn/.env` without an explicit warning that this stores a secret persistently on disk. Even with `chmod 600`, local persistence of credentials can surprise users, violate least-astonishment, and increase the chance of later disclosure through backups, logs, shell history, or broader host compromise.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal