Solana Investor

Security checks across malware telemetry and agentic risk

Overview

The skill’s visible prompt is cautious, but the package includes under-disclosed executable scripts that inspect operational state, environment configuration, and shared investment data.

Install only if you are comfortable with a Solana investment helper that bundles diagnostic scripts beyond the documented prompt workflow. Review or remove the scripts before use, and do not run them unless you understand which shared database, metrics, environment, signer, and compliance-file state they can inspect.

SkillSpector

By NVIDIA

Vulnerability Patterns

MCP Tool PoisoningHidden Instructions, Unicode Deception, Parameter Description Injection
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (1)

Tp4

High

Category: MCP Tool Poisoning
Confidence: 88% confidence
Finding: If the skill behavior truly includes reading database counts, inspecting environment/configuration, scanning compliance docs, and producing readiness or operational summaries, that is materially broader than the declared purpose of simple investment orchestration. This kind of hidden administrative or reconnaissance behavior can expose sensitive operational metadata and violates least surprise, making abuse or overprivileged execution more likely.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal