MoonPay

Security checks across malware telemetry and agentic risk

Overview

This MoonPay skill is coherent, but it gives agents broad wallet, signing, fund-moving, fiat, and persistent account access that users should review carefully before installing.

Install only if you trust MoonPay and the @moonpay/cli package. Use a dedicated low-balance wallet, verify recipient addresses, chains, token contracts, amounts, fees, and slippage, and require explicit human approval before any transfer, swap, bridge, buy, transaction signing, wallet export, wallet deletion, x402 payment, or automated trading setup.

SkillSpector

By NVIDIA

Vulnerability Patterns

Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (1)

Missing User Warnings

Medium

Confidence: 93% confidence
Finding: This section documents wallet export, deletion, token swaps, bridges, transfers, signing, and fiat/on-ramp flows, all of which can cause irreversible financial loss if used incorrectly. Although the skill later mentions explicit confirmation for server-side execution, the CLI examples themselves do not consistently warn about irreversibility, address mistakes, slippage, bridge risk, or the danger of exporting mnemonics/private keys.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal