Back to skill

Security audit

KTrendz Lightstick Trading

Security checks across malware telemetry and agentic risk

Overview

This skill is aligned with K-Trendz token trading, but it can execute live buy and sell transactions without a built-in confirmation step.

Review before installing. Only use this skill if you trust K-Trendz with your API key and are comfortable with an agent executing real token trades. Confirm the artist, estimated cost or refund, fees, and slippage before every buy or sell, and remove ~/.config/ktrendz/config.json when you no longer want saved trading credentials.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (7)

Missing User Warnings

Medium
Confidence
94% confidence
Finding
The skill explicitly instructs users to buy and sell real tokenized assets and frames the activity in promotional terms, but it does not clearly warn that actions may spend real funds or that users can incur financial losses. In an agent context, this omission is dangerous because users may treat commands as low-risk informational actions when they actually trigger irreversible transactions with real economic consequences.

Missing User Warnings

High
Confidence
97% confidence
Finding
The script performs a real buy transaction immediately after fetching price data, with no confirmation prompt, dry-run mode, or clear opt-in gate. In an agent or automation context, this can cause unintended financial transactions if invoked with attacker-influenced input or by a user who believes it is only informational.

Missing User Warnings

High
Confidence
95% confidence
Finding
The script performs a sell operation immediately after fetching price data, without requiring an interactive confirmation or a separate explicit --yes/--confirm flag. In a trading context, this can cause irreversible asset sales from accidental invocation, typoed artist names, automation misuse, or social-engineering-triggered execution, leading to direct financial loss.

Missing User Warnings

Medium
Confidence
94% confidence
Finding
The script stores the API key in a local plaintext JSON config file under the user's home directory. Although it sets restrictive permissions with chmod 600, users are not warned that long-lived credential storage will occur, which increases the chance of unintended exposure through backups, endpoint compromise, shell support sessions, or accidental file handling.

External Transmission

Medium
Category
Data Exfiltration
Content
echo ""
echo "Executing purchase..."

RESPONSE=$(curl -s -X POST "$BASE_URL/buy" \
    -H "Content-Type: application/json" \
    -H "x-bot-api-key: $API_KEY" \
    -d "{\"artist_name\": \"$ARTIST\", \"max_slippage_percent\": $SLIPPAGE}")
Confidence
95% confidence
Finding
curl -s -X POST "$BASE_URL/buy" \ -H "Content-Type: application/json" \ -H "x-bot-api-key: $API_KEY" \ -d

External Transmission

Medium
Category
Data Exfiltration
Content
echo ""
echo "Executing sale..."

RESPONSE=$(curl -s -X POST "$BASE_URL/sell" \
    -H "Content-Type: application/json" \
    -H "x-bot-api-key: $API_KEY" \
    -d "{\"artist_name\": \"$ARTIST\", \"min_slippage_percent\": $SLIPPAGE}")
Confidence
87% confidence
Finding
curl -s -X POST "$BASE_URL/sell" \ -H "Content-Type: application/json" \ -H "x-bot-api-key: $API_KEY" \ -d

External Transmission

Medium
Category
Data Exfiltration
Content
echo ""
echo "Validating API key..."

RESPONSE=$(curl -s -X POST "https://k-trendz.com/api/bot/token-price" \
    -H "Content-Type: application/json" \
    -H "x-bot-api-key: $API_KEY" \
    -d '{"artist_name": "RIIZE"}')
Confidence
90% confidence
Finding
curl -s -X POST "https://k-trendz.com/api/bot/token-price" \ -H "Content-Type: application/json" \ -H "x-bot-api-key: $API_KEY" \ -d

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal

Static analysis

No suspicious patterns detected.