ClawHub

Indexy

Security checks across malware telemetry and agentic risk

Overview

Indexy is a disclosed, instruction-only skill for managing crypto index data, with expected credentialed create/update actions that users should confirm carefully.

Install only if you intend to let an agent access Indexy market data and, when credentials are provided, create or modify your Indexy indices. Use a dedicated API key if possible, keep credentials out of logs and chat, verify requests go to indexy.co, and require explicit confirmation before any create, update, or rebalance action.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Findings (4)

Vague Triggers

Medium
Confidence
92% confidence
Finding
The trigger phrases for the highlights capability are very broad and overlap with common user requests such as asking what is trending. In an agent environment, this can cause unintended tool invocation and retrieval of external data when the user may have intended a general conversational answer, which increases prompt-to-action risk.

Unrestricted Tool Access

Medium
Category
Excessive Agency
Content
- Curve: 25%
```

**Tool:** `create_index`
**Endpoint:** `POST /beta/indexes/agent`
**Auth:** Required (API Key or Web3)
Confidence
86% confidence
Finding
Tool:*

Unrestricted Tool Access

Medium
Category
Excessive Agency
Content
Update my index #123 to rebalance: increase Uniswap to 50%, decrease others proportionally
```

**Tool:** `update_index`
**Endpoint:** `PATCH /beta/indexes/agent/{indexId}`
**Auth:** Required (must be the index creator)
Confidence
91% confidence
Finding
Tool:*

Unrestricted Tool Access

Medium
Category
Excessive Agency
Content
What's trending right now?
```

**Tool:** `get_index_highlights`
**Endpoint:** `GET /beta/highlights/indexes`
**Auth:** Not required
Confidence
80% confidence
Finding
Tool:*

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal