Security audit

BTC Direction — Orion

Security checks across malware telemetry and agentic risk

Overview

This is a markdown-only BTC trading-signal skill that is financially risky to rely on, but it does not install code, request credentials, persist, or execute trades.

Install only if you treat the outputs as market commentary, not financial advice. Do not rely on this skill as the sole basis for BTC trades, and require explicit confirmation before hiring Orion through ACP or paying for any signal offering.

SkillSpector

By NVIDIA

Vulnerability Patterns

Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (2)

Vague Triggers

Medium

Confidence: 91% confidence
Finding: The skill advertises very broad trigger phrases such as "BTC direction?" and "should I buy BTC?", which can cause the skill to activate in ordinary conversation about bitcoin rather than only when the user explicitly intends to invoke it. In a trading context, unintended invocation is more dangerous because the output is positioned as a pre-trade decision gate and may influence financial actions without a deliberate opt-in.

Missing User Warnings

Medium

Confidence: 95% confidence
Finding: The skill presents directional trading signals and explicitly frames them as something to run before every execution, but it does not provide a clear warning that the output is not financial advice and may be wrong. In this context, the omission increases the risk that users over-trust the signal as investment guidance, leading to financial loss or inappropriate reliance on the agent.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal