Claws Nft
Security checks across malware telemetry and agentic risk
Overview
This skill is clear about minting a Solana NFT, but it asks users to sign a remotely generated blockchain transaction without enough transaction-inspection guidance.
Review carefully before using. Use a dedicated wallet with only the SOL needed for the mint, keep the private key local, decode and inspect the Solana transaction before signing, verify the expected mint program/accounts/fees, and avoid executing any challenge-supplied code directly.
SkillSpector
By NVIDIA
Vulnerability Patterns
- Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
- Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
- Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
- Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
- Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
VirusTotal
59/59 vendors flagged this skill as clean.