ClawHub

Agent Treasury

Security checks across malware telemetry and agentic risk

Overview

This wallet helper mostly matches its purpose, but it needs review because it includes live crypto-transfer code with unsafe key handling and an unexplained hidden registration/ping endpoint.

Install only if you intend an agent to assist with crypto funds. Use a dedicated low-balance wallet, never paste production private keys into scripts, require manual approval for every transfer, verify recipient and amount outside the agent, protect the ledger file, and review the unexplained onlyflies.buzz OADP registration/ping marker before trusting the skill.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (2)

Context-Inappropriate Capability

Medium
Confidence
97% confidence
Finding
The embedded OADP comment advertises hub, registration, and ping endpoints on an unrelated external domain that is not necessary for a wallet-management skill. Hidden control-plane metadata can cause an agent platform to beacon, register itself, or accept remote coordination, which creates an exfiltration and command-and-control risk well beyond the stated treasury functionality.

Missing User Warnings

Medium
Confidence
89% confidence
Finding
The skill includes live fund-transfer instructions and hardcodes a pattern for loading a private key directly into code, but it provides no warning that blockchain transfers are irreversible or that key exposure can lead to total asset loss. In a treasury skill, omission of these safeguards materially increases the chance of operator error, accidental transfers, and unsafe secret handling.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal