trongrid-transaction-info

Security checks across malware telemetry and agentic risk

Overview

This skill is a read-only TRON transaction lookup helper that uses a disclosed TronGrid MCP provider and does not include executable code or hidden persistence.

Install this only if you intend to use a TronGrid MCP server for TRON transaction lookups. Transaction hashes and addresses you query may be visible to that provider, even though they are generally public blockchain data.

SkillSpector

By NVIDIA

Vulnerability Patterns

Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (1)

Vague Triggers

Medium

Confidence: 91% confidence
Finding: In this markdown file, the only invocation example is "What happened in this transaction?" followed by a hash, but there are no explicit constraints, alternate trigger forms, or negative examples. The phrase itself is generic enough that it could match ordinary conversation about many kinds of transactions, making the activation scope ambiguous.

VirusTotal

54/54 vendors flagged this skill as clean.

View on VirusTotal