Back to skill

Security audit

Regime Transition Probability

Security checks across malware telemetry and agentic risk

Overview

This paid crypto signal skill is clear about its purpose, but it asks for a live EVM private key and lets agent calls trigger wallet payments without enough user-controlled spending limits.

Review this before installing. Use only a dedicated low-balance wallet, confirm the Base USDC cost before each call, and do not expose a main wallet private key to an agent that may invoke the skill repeatedly.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Findings (1)

Missing User Warnings

Medium
Confidence
93% confidence
Finding
The skill explicitly states that the x402 client 'handles payment authorisation automatically' and instructs use of a live EVM private key, but it does not provide a clear warning that invoking the skill can spend funds from the user's wallet. In an agent setting, this is dangerous because users or orchestrators may treat the skill like a normal data fetch while it actually triggers on-chain payment behavior tied to a hot wallet.

VirusTotal

63/63 vendors flagged this skill as clean.

View on VirusTotal

Static analysis

No suspicious patterns detected.