ClawHub

Dogecoin Node

Security checks across malware telemetry and agentic risk

Overview

This Dogecoin skill is mostly coherent, but it exposes real wallet-spending commands without enough safeguards against accidental or manipulated transfers.

Review this before installing. Use only a dedicated low-balance Dogecoin wallet, keep RPC bound to localhost, verify the Dogecoin Core download independently, and do not let agents or untrusted users invoke `/dogecoin-node send` without a separate manual confirmation of address, amount, and wallet context.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • MCP Tool PoisoningHidden Instructions, Unicode Deception, Parameter Description Injection
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (5)

Intent-Code Divergence

Medium
Confidence
95% confidence
Finding
The skill documents tipping as if it sends DOGE, but the provided Python code only records entries in SQLite and never invokes Dogecoin RPC or performs an on-chain transfer. In a financial/wallet-management skill, this mismatch is dangerous because users or downstream agents may assume funds were moved when no transaction occurred, causing accounting errors, fraud exposure, or false confirmation of payment.

Missing User Warnings

Medium
Confidence
95% confidence
Finding
The heartbeat documentation explicitly instructs testing a `/dogecoin-node send <recipient_address> <amount>` command but provides no warning that it can move real funds, may be irreversible, and should only be performed in a safe/test environment. In the context of a cryptocurrency node skill with RPC access and optional tipping, this omission increases the chance of accidental financial loss during routine validation or operator testing.

Missing User Warnings

Medium
Confidence
94% confidence
Finding
The cheat sheet explicitly documents the `sendtoaddress <address> <amount>` RPC command, which can irreversibly transfer wallet funds, but it provides no warning, confirmation guidance, or mention of operational safeguards. In a skill designed to operate a Dogecoin node with RPC access, this omission increases the chance of accidental or unauthorized fund movement by users or downstream agents treating the cheat sheet as safe copy-paste guidance.

Missing User Warnings

Medium
Confidence
87% confidence
Finding
The skill advertises wallet balance, sending funds, transaction lookup, and private-key-related commands without an upfront warning about irreversible financial actions and key exposure risk. In a cryptocurrency node skill, lack of prominent safety guidance increases the chance that users or agents will run destructive or sensitive commands, especially ones like sendtoaddress or dumpprivkey, without understanding the consequences.

Missing User Warnings

High
Confidence
98% confidence
Finding
The skill exposes a live fund-transfer command that directly executes `dogecoin-cli ... sendtoaddress {{recipient}} {{amount}}` with no confirmation, no preview of destination/amount, and no secondary approval step. In a crypto wallet context, this materially increases the chance of accidental or socially engineered transfers, and any mistaken execution results in irreversible loss of funds.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal