KyberSwap Arbitrage

Security checks across malware telemetry and agentic risk

Overview

This DeFi arbitrage skill appears purpose-aligned, but it should be reviewed because it can direct live on-chain swaps without clear loss warnings or approval gates.

Review before installing. Use this only with a dedicated low-balance wallet, require explicit confirmation before any transaction, verify Base network and token addresses, and prefer read-only quote or simulation mode unless you intentionally want the agent to trade with real funds.

SkillSpector

By NVIDIA

Vulnerability Patterns

Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (1)

Missing User Warnings

Medium

Confidence: 96% confidence
Finding: The skill explicitly instructs the agent to execute live on-chain arbitrage trades and swaps, but it does not include a clear warning that these actions can cause irreversible financial loss, failed transactions, slippage losses, or unintended execution on mainnet. In an agent setting, omission of explicit transaction-risk disclosure increases the chance that a user or downstream system treats the skill as routine data analysis rather than a capability that can spend funds and submit irreversible blockchain transactions.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal