ClawHub

x402 Private Search

Security checks across malware telemetry and agentic risk

Overview

This skill does what it claims, but it gives an agent wallet-payment authority with limited spending controls and handles private keys in exposed ways.

Install only if you are comfortable letting this skill sign x402 payments from a dedicated low-balance test wallet. Do not reuse a valuable wallet or mainnet private key, prefer --key-file over long-lived environment variables, review the service URL and price before each request, and avoid sensitive searches through the transient Cloudflare gateway.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Findings (3)

Missing User Warnings

Medium
Confidence
92% confidence
Finding
The skill instructs users to place a private key directly into an environment variable, which increases the chance of secret exposure through shell history, process inspection, logs, crash reports, or inherited child processes. Because this skill is specifically designed to sign blockchain payments, compromise of the key would allow unauthorized spending of wallet funds and misuse of the identity associated with that wallet.

Missing User Warnings

Medium
Confidence
97% confidence
Finding
The script prints the generated private key directly to stdout, which can expose the secret through terminal history, scrollback, logging systems, CI output, screen recording, or shell session capture. In the context of a wallet-generation tool, this is especially risky because anyone who obtains the key can fully control the wallet and steal any funded assets.

Missing User Warnings

Medium
Confidence
94% confidence
Finding
The script can write the private key to disk with no warning or secure storage workflow beyond file mode 0600. Saving raw private keys in plaintext increases the chance of compromise from backups, misconfigured permissions on some platforms, malware, accidental commits, or later user mishandling.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal