Breeze x402

Security checks across malware telemetry and agentic risk

Overview

This skill appears purpose-built for Solana payments, but it handles live wallet private keys and transaction signing with weakly scoped safety guidance.

Install only with a dedicated low-balance wallet, never a primary wallet. Review every recipient, amount, and network before allowing the agent to sign or broadcast, and secure or avoid any generated .env or wallet-backup.json files containing private keys.

SkillSpector

By NVIDIA

Vulnerability Patterns

Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (2)

Missing User Warnings

Medium

Confidence: 93% confidence
Finding: The README states that the skill can sign and broadcast Solana transactions, but it does not warn that these actions move funds and may be irreversible. In an agent-skill context, this omission is especially risky because users may invoke the skill conversationally and not realize it can perform live on-chain operations with financial consequences.

Missing User Warnings

Medium

Confidence: 95% confidence
Finding: The README requires a WALLET_PRIVATE_KEY environment variable without any handling guidance, despite the skill operating a funded Solana wallet for payments and transactions. This encourages deployment patterns where highly sensitive key material may be stored insecurely or exposed to the agent runtime, which could lead to wallet compromise and direct loss of funds.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal