Security audit

Funding Rate

Security checks across malware telemetry and agentic risk

Overview

This skill is a disclosed x402 payment helper that uses wallet credentials and can spend funds, but those capabilities match its stated purpose and include user-confirmation guidance.

Install only if you intend to let the agent work with x402 payments. Use a dedicated low-balance wallet, keep XCLAW02_PRIVATE_KEY out of chat and logs, review the facilitator/package source you use, and require explicit confirmation for each paid request and spending limit.

SkillSpector

By NVIDIA

Vulnerability Patterns

Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (1)

Missing User Warnings

Medium

Confidence: 94% confidence
Finding: The skill instructs the agent to make an x402-authenticated paid request using an EVM private key and states that payment authorization is handled automatically, but it does not provide an explicit warning that this can spend wallet funds or that the private key is highly sensitive. In an agent-skill context, normalizing automatic payment with direct use of a signing key increases the risk of unintended charges and unsafe credential handling, especially if invoked without clear user consent boundaries.

VirusTotal

63/63 vendors flagged this skill as clean.

View on VirusTotal

Static analysis

No suspicious patterns detected.