Security audit

Cross Exchange Spread

Security checks across malware telemetry and agentic risk

Overview

This is a paid crypto market-data skill that discloses wallet-based per-call billing and contains only instructions, but users should use a limited wallet.

Before installing, use a dedicated low-balance Base wallet, understand that each call may spend USDC, never expose or log the private key, and avoid running the skill in loops or automated workflows without explicit spend limits.

SkillSpector

By NVIDIA

Vulnerability Patterns

Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (1)

Missing User Warnings

Medium

Confidence: 95% confidence
Finding: The skill instructs the agent to use an EVM private key for an x402-authenticated request and states that payment authorization is handled automatically, but it does not clearly warn that this can spend wallet funds or emphasize strict secret-handling requirements. In an agent context, this is dangerous because users may supply a funded signing key expecting read-only API access, leading to unintended on-chain payment authorization and exposure of highly sensitive credentials.

VirusTotal

54/54 vendors flagged this skill as clean.

View on VirusTotal