Back to skill

Security audit

Token Unlock

Security checks across malware telemetry and agentic risk

Overview

This paid crypto signal skill is coherent, but it needs review because it asks an agent to use an EVM private key for automatically paid calls that can spend USDC.

Review this carefully before installing. Use only a dedicated low-balance wallet, assume each call may spend USDC on Base mainnet, and avoid configuring a primary trading or custody wallet as EVM_PRIVATE_KEY unless you have external controls on agent usage and spending.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Findings (1)

Missing User Warnings

Medium
Confidence
95% confidence
Finding
The skill instructs the agent to make an x402-authenticated request and states that payment authorization is handled automatically, but it does not clearly warn that using the configured EVM private key may spend wallet funds. Because the skill metadata explicitly requires EVM_PRIVATE_KEY and mentions USDC on Base mainnet, an operator could unknowingly authorize paid calls and incur real financial cost.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal

Static analysis

No suspicious patterns detected.