Alby Lightning Payments

Security checks across malware telemetry and agentic risk

Overview

This skill is for Lightning payments, but it includes runnable payment paths that can spend wallet funds without a separate confirmation step.

Install only if you are comfortable giving the skill a spend-capable Alby NWC connection. Use a dedicated wallet connection with strict spending limits, review or remove scripts/wallet.js before running npm test, and verify recipient, invoice, and amount before invoking payment commands.

SkillSpector

By NVIDIA

Vulnerability Patterns

Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (2)

Missing User Warnings

High

Confidence: 94% confidence
Finding: The code performs outbound payment actions immediately via both invoice payment and Lightning address payment without any confirmation, policy check, recipient verification, or spending limit. In an agent or automation context, this is dangerous because any invocation path that reaches this code can trigger irreversible fund transfers from the connected wallet.

Missing User Warnings

Medium

Confidence: 91% confidence
Finding: The script performs a real payment immediately after resolving and validating an invoice, with no interactive confirmation step, dry-run mode, or secondary authorization. In an agent/skill context, this is dangerous because any upstream prompt injection, argument manipulation, or user misunderstanding can directly trigger irreversible fund transfer once the script is invoked.

VirusTotal

63/63 vendors flagged this skill as clean.

View on VirusTotal