Whale Shark
Security checks across malware telemetry and agentic risk
Overview
This skill appears locally non-destructive, but it markets live whale tracking and paid unlocks while the implementation uses simulated static data and no real data-source or unlock logic.
Treat this as a demo unless the publisher clearly documents that the data is simulated or ships verifiable live-data integration. Do not rely on it for trading decisions, and do not send crypto for an unlock unless the publisher provides a clear, working payment and access mechanism. Alerts you add are stored locally and should be removed if you do not want those watched wallets retained.
SkillSpector
By NVIDIA
Vulnerability Patterns
- Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
- Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
- Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
- Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
- Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
VirusTotal
52/52 vendors flagged this skill as clean.