ClawHub

Morpho Market Creation

Security checks across malware telemetry and agentic risk

Overview

The skill appears intended for real DeFi deployment, but it asks users to use a wallet mnemonic from a local .env file and can submit irreversible on-chain transactions without enough built-in safety checks.

Install only if you understand that this can spend gas and create permanent on-chain objects. Prefer Safe, Etherscan, hardware wallets, or other external signing flows over storing a wallet mnemonic in .env, and review chain, contract addresses, oracle parameters, IRM, LLTV, wallet address, and expected cost before running any deployment or market-creation script.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • MCP Tool PoisoningHidden Instructions, Unicode Deception, Parameter Description Injection
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (8)

Intent-Code Divergence

Medium
Confidence
96% confidence
Finding
The skill explicitly says to never read `.env` files or ask for secrets such as `WALLET_MNEMONIC`, but later instructs the user to set `WALLET_MNEMONIC` in `.env` and proceed with transaction scripts. Contradictory secret-handling instructions create unsafe operator behavior, increase the chance of accidental secret exposure, and undermine trust in the workflow's safety boundaries.

Intent-Code Divergence

Medium
Confidence
98% confidence
Finding
This later step directly contradicts the earlier prohibition by telling the user to set `WALLET_MNEMONIC` in `.env` before running deployment. Encouraging placement of a wallet mnemonic in a local file materially raises the risk of credential compromise through accidental commits, local leakage, logs, backups, or adjacent tooling.

Intent-Code Divergence

Medium
Confidence
97% confidence
Finding
The market creation phase repeats the unsafe pattern by asking the user to confirm that `WALLET_MNEMONIC` remains set in `.env`, reinforcing insecure secret storage for a transaction-signing workflow. Repetition increases the likelihood users normalize unsafe practices and expose credentials that control real blockchain funds.

Missing User Warnings

Medium
Confidence
90% confidence
Finding
The README explicitly describes scripts that deploy oracle contracts and create Morpho markets, but it does not warn that these actions submit real transactions, change on-chain state, and may consume funds from the configured wallet. In a blockchain deployment skill, missing safety notices increases the risk of accidental execution against production networks with irreversible financial consequences.

Missing User Warnings

Medium
Confidence
95% confidence
Finding
The skill instructs the user to place `WALLET_MNEMONIC` in a `.env` file without any privacy or sensitivity warning. For a blockchain deployment skill, that secret is effectively equivalent to full wallet control, so omission of a strong warning materially increases the risk of account takeover and fund loss if mishandled.

Missing User Warnings

Medium
Confidence
94% confidence
Finding
These steps lead the user through oracle deployment transactions but do not clearly warn that blockchain transactions are irreversible and may incur gas costs or create lasting on-chain state. In this context, the omission is safety-relevant because users may approve expensive or incorrect transactions without understanding the consequences.

Missing User Warnings

Medium
Confidence
95% confidence
Finding
The create-market step submits a market-creation transaction without an explicit warning about irreversibility, gas expenditure, or the financial/compliance impact of creating a live lending market. In a DeFi deployment context, that missing warning makes user error more dangerous because mistakes can result in persistent market misconfiguration or financial loss.

Missing User Warnings

Medium
Confidence
94% confidence
Finding
The script directly submits a state-changing on-chain transaction using the configured wallet mnemonic without any interactive confirmation, dry-run, or final summary of the parameters being used. In this skill context, that is dangerous because market creation is an irreversible administrative action and a malformed or tampered market-params.json file could cause the operator to create an unintended market and spend gas before noticing.

VirusTotal

VirusTotal findings are pending for this skill version.

View on VirusTotal