Security audit

Dca Reentry Gate

Security checks across malware telemetry and agentic risk

Overview

The skill is coherent and not malicious, but it asks an agent to use an EVM private key for automatic paid requests without enough user-control or key-safety guidance.

Review before installing. Use only a dedicated low-balance wallet on Base, confirm each paid call intentionally, avoid exposing or logging EVM_PRIVATE_KEY, and do not connect a wallet that can access funds beyond what you are willing to spend on this signal.

SkillSpector

By NVIDIA

Vulnerability Patterns

Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (2)

Missing User Warnings

Medium

Confidence: 94% confidence
Finding: The skill instructs the agent to make an x402-authenticated request where payment authorization is handled automatically, but it does not warn that executing the call can spend real funds from the user's wallet. In an agent setting, this is dangerous because a seemingly routine data-fetch action can trigger unintended paid transactions, especially if the user has not explicitly consented to spending.

Missing User Warnings

Medium

Confidence: 92% confidence
Finding: The example shows direct use of an EVM private key from an environment variable to authorize requests, but it provides no warning about the sensitivity of that credential or the risks of exposing a signing key to an agent-integrated workflow. This is dangerous because compromise, logging, prompt leakage, or misuse of the key could lead to unauthorized wallet actions and financial loss beyond the small per-call fee.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal