ClawHub
Back to skill

Security audit

Monero Wallet Recovery Guide

Security checks across malware telemetry and agentic risk

Overview

The skill appears to be a Monero wallet recovery guide, but it handles wallet recovery secrets without enough safety framing for such irreversible credentials.

Install only if you are comfortable using it as a recovery checklist, not as a custody tool. Never enter a Monero seed phrase or private keys on an untrusted, shared, browser-based, or network-exposed system, and move funds to a fresh wallet if a recovery secret may have been exposed.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Findings (2)

Missing User Warnings

Medium
Confidence
96% confidence
Finding
This guide instructs users to enter Monero seed phrases and private keys during wallet recovery without prominently warning that doing so on a networked, compromised, or untrusted machine can irreversibly expose the wallet and lead to theft of funds. Because the skill concerns highly sensitive cryptocurrency recovery secrets, omission of this warning materially increases the chance that users will disclose secrets in unsafe environments.

Natural-Language Policy Violations

Low
Confidence
79% confidence
Finding
The text implies Monero recovery is tied to the English word list by default and does not clearly explain that mnemonic language can vary. While this is unlikely to create a direct exploit by itself, it can mislead users during recovery, causing failed restores, confusion, or unsafe troubleshooting behavior such as repeatedly exposing seeds across multiple tools or systems.

VirusTotal

62/62 vendors flagged this skill as clean.

View on VirusTotal

Static analysis

No suspicious patterns detected.