Unzipped Skill

Security checks across malware telemetry and agentic risk

Overview

This Farcaster automation skill is purpose-aligned, but it gives an agent wallet keys, spends funds, posts publicly, and stores private keys in plaintext by default.

Install only if you are comfortable with an agent spending a small funded wallet, creating an on-chain Farcaster identity, posting publicly, and handling private keys. Use a new low-value wallet, review the referenced source code first, prefer --no-save or a real secret store, and require manual approval before bridge, swap, signer, profile, or cast actions.

SkillSpector

By NVIDIA

Vulnerability Patterns

Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (1)

Missing User Warnings

Medium

Confidence: 95% confidence
Finding: The prerequisite section mentions needing funds, but it does not prominently and explicitly warn that the auto-setup flow will perform real blockchain transactions, bridge/swap assets, incur fees, and spend funds automatically. In an autonomous-agent context, weak disclosure can cause users to authorize or trigger irreversible financial actions without informed consent.

VirusTotal

54/54 vendors flagged this skill as clean.

View on VirusTotal