ClawHub

RiskState — Risk Governor for Crypto Trading Agents

Security checks across malware telemetry and agentic risk

Overview

This is a documented external API skill for crypto risk checks; it sends API requests and optional wallet addresses to RiskState, but that behavior matches its stated purpose.

Install only if you are comfortable sending RiskState API keys, requested assets, and any optional wallet address to RiskState's service. Use a scoped API key, keep it in environment variables or a secret manager, avoid submitting wallets unless needed for DeFi analysis, and review the optional MCP server separately before installing it.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Findings (12)

Missing User Warnings

Medium
Confidence
94% confidence
Finding
The README instructs users to send a bearer token to an external API but does not clearly disclose that credentials and trading-related context leave the local agent environment. In an agent-skill context, this is security-relevant because users may treat the skill as local logic while it actually causes authenticated outbound transmission to a third-party service.

Missing User Warnings

Medium
Confidence
95% confidence
Finding
The README says users can pass a wallet address for DeFi borrowing analysis without warning that wallet identifiers and related portfolio/risk context will be transmitted to the service. Wallet addresses are sensitive in practice because they enable transaction history correlation, balance inference, and strategy profiling.

Missing User Warnings

Medium
Confidence
83% confidence
Finding
The documentation encourages sending a wallet address to a third-party API for DeFi risk analysis but does not provide an explicit privacy notice, data retention policy reference, or warning that wallet addresses are sensitive and linkable financial metadata. In an autonomous trading-agent context, this can cause operators to disclose identifiable on-chain activity to an external service without informed consent, increasing privacy and surveillance risk.

External Transmission

Medium
Category
Data Exfiltration
Content
```python
import requests

policy = requests.post(
    "https://api.riskstate.ai/v1/risk-state",
    headers={"Authorization": f"Bearer {API_KEY}"},
    json={"asset": "BTC"}
Confidence
86% confidence
Finding
requests.post( "https://

External Transmission

Medium
Category
Data Exfiltration
Content
```python
import requests

policy = requests.post(
    "https://api.riskstate.ai/v1/risk-state",
    headers={"Authorization": f"Bearer {API_KEY}"},
    json={"asset": "BTC"}
Confidence
86% confidence
Finding
requests.post( "https://api.riskstate.ai/v1/risk-state", headers={"Authorization": f"Bearer {API_KEY}"}, json=

External Transmission

Medium
Category
Data Exfiltration
Content
One API call returns position limits, allowed actions, and policy constraints computed from **30+ real-time signals** across macro, on-chain, derivatives, and DeFi health. The assessment is **USD-denominated**: all scoring is based on BTC/USD and ETH/USD price action, derivatives, and macro conditions.

```bash
curl -X POST https://api.riskstate.ai/v1/risk-state \
  -H "Authorization: Bearer $RISKSTATE_API_KEY" \
  -H "Content-Type: application/json" \
  -d '{"asset": "BTC"}'
Confidence
89% confidence
Finding
curl -X POST https://api.riskstate.ai/v1/risk-state \ -H "Authorization: Bearer $RISKSTATE_API_KEY" \ -H "Content-Type: application/json" \ -d

External Transmission

Medium
Category
Data Exfiltration
Content
### 2. Query the API

```bash
curl -X POST https://api.riskstate.ai/v1/risk-state \
  -H "Authorization: Bearer $RISKSTATE_API_KEY" \
  -H "Content-Type: application/json" \
  -d '{"asset": "BTC"}'
Confidence
88% confidence
Finding
curl -X POST https://api.riskstate.ai/v1/risk-state \ -H "Authorization: Bearer $RISKSTATE_API_KEY" \ -H "Content-Type: application/json" \ -d '{"asset": "BTC"}' ``` ### 3. Enforce before execu

External Transmission

Medium
Category
Data Exfiltration
Content
One API call returns position limits, allowed actions, and policy constraints computed from **30+ real-time signals** across macro, on-chain, derivatives, and DeFi health. The assessment is **USD-denominated**: all scoring is based on BTC/USD and ETH/USD price action, derivatives, and macro conditions.

```bash
curl -X POST https://api.riskstate.ai/v1/risk-state \
  -H "Authorization: Bearer $RISKSTATE_API_KEY" \
  -H "Content-Type: application/json" \
  -d '{"asset": "BTC"}'
Confidence
89% confidence
Finding
https://api.riskstate.ai/

External Transmission

Medium
Category
Data Exfiltration
Content
### 2. Query the API

```bash
curl -X POST https://api.riskstate.ai/v1/risk-state \
  -H "Authorization: Bearer $RISKSTATE_API_KEY" \
  -H "Content-Type: application/json" \
  -d '{"asset": "BTC"}'
Confidence
88% confidence
Finding
https://api.riskstate.ai/

External Transmission

Medium
Category
Data Exfiltration
Content
```bash
# Quick check before placing an order on Binance/Hyperliquid/Aave
curl -s -X POST https://api.riskstate.ai/v1/risk-state \
  -H "Authorization: Bearer $RISKSTATE_API_KEY" \
  -H "Content-Type: application/json" \
  -d '{"asset": "BTC"}' | jq '{
Confidence
87% confidence
Finding
https://api.riskstate.ai/

External Transmission

Medium
Category
Data Exfiltration
Content
**DeFi monitoring (with wallet + Aave):**

```bash
curl -X POST https://api.riskstate.ai/v1/risk-state \
  -H "Authorization: Bearer $RISKSTATE_API_KEY" \
  -H "Content-Type: application/json" \
  -d '{"asset": "ETH", "wallet": "0xYOUR_WALLET_ADDRESS", "protocol": "aave", "include_details": true}'
Confidence
87% confidence
Finding
https://api.riskstate.ai/

External Transmission

Medium
Category
Data Exfiltration
Content
### DeFi monitoring

```bash
curl -X POST https://api.riskstate.ai/v1/risk-state \
  -H "Authorization: Bearer $RISKSTATE_API_KEY" \
  -H "Content-Type: application/json" \
  -d '{"asset": "ETH", "wallet": "0xYOUR_WALLET_ADDRESS_HERE", "include_details": true}'
Confidence
88% confidence
Finding
https://api.riskstate.ai/

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal