XRPL Token Minting

Security checks across malware telemetry and agentic risk

Overview

This is a simple XRPL transaction-template skill whose blockchain examples are high impact if used, but the behavior is disclosed, purpose-aligned, and not automated.

Install only if you understand XRPL transactions. Treat every generated transaction as live-risk until proven otherwise: verify the network, account addresses, issuer, amounts, NFT IDs, flags, fees, and offer IDs before using any wallet or signing flow, and prefer testnet or dry-run review before mainnet use.

SkillSpector

By NVIDIA

Vulnerability Patterns

Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (1)

Missing User Warnings

Medium

Confidence: 92% confidence
Finding: The skill provides concrete XRPL transaction templates for trust lines, token issuance, NFT minting, and offer acceptance without clearly warning that these actions can create irreversible on-chain effects and directly affect wallet balances, token holdings, and NFT ownership. In an agent setting, users may invoke these examples as operational guidance and unintentionally authorize real asset-changing transactions without understanding the permanence or financial risk.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal