ClawHub

Paratrix life register

Security checks across malware telemetry and agentic risk

Overview

The skill mostly matches its wallet registration and SBT minting purpose, but it needs Review because it can use mainnet despite testnet-default documentation and includes broad local wallet/agent authority.

Install only if you are comfortable with a wallet automation skill. Explicitly pass --env=testnet or --env=mainnet, verify the chain ID and contract in the wallet popup, use a wallet with limited funds, and review or remove the bundled .claude permission files before use.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (3)

Context-Inappropriate Capability

Medium
Confidence
93% confidence
Finding
The bridge page will execute whatever action object the Node side serves, including arbitrary `personal_sign` messages and arbitrary `eth_sendTransaction` calls with attacker-controlled `to`, `data`, and `value`. In a wallet-enabled browser context, this creates a generic wallet-command channel that exceeds the narrow registration/SBT-mint scope and could be abused to solicit signatures or transactions unrelated to the intended flow.

Missing User Warnings

Medium
Confidence
88% confidence
Finding
The README instructs users to perform wallet signature and on-chain mint actions through a local HTTP bridge, but it does not clearly warn about the security and privacy implications of signing messages, paying gas, exposing a localhost callback surface, or verifying destination domains and chain IDs. In a wallet-connected automation skill, omission of these warnings increases the chance that users approve unintended actions or misunderstand the trust boundary between the local bridge, browser page, and remote endpoints.

Missing User Warnings

Medium
Confidence
90% confidence
Finding
The page silently submits sensitive wallet-derived data such as addresses, signatures, transaction hashes, and error details back to the local HTTP server without clearly telling the user that this information is being transmitted over a localhost bridge. That lack of disclosure weakens informed consent and makes phishing-style misuse easier if the surrounding flow is compromised.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal