ClawHub
Back to skill

Security audit

Make Git Escrow

Security checks across malware telemetry and agentic risk

Overview

This skill is for creating blockchain escrow bounties, but it can lock tokens with a wallet private key without a required final confirmation step.

Install only if you understand it can create live blockchain transactions. Use a dedicated low-balance wallet, protect the `.env` file, prefer a trusted pinned `git-escrows` CLI, and require the agent to show the repo, commit, network, reward, token, oracle, arbiter, and exact command before you explicitly approve submission.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Findings (3)

Missing User Warnings

Medium
Confidence
94% confidence
Finding
The skill instructs the agent to execute `git-escrows submit`, which locks ERC20 tokens in escrow, but it does not require an explicit confirmation immediately before the funds-moving action. Because the skill also auto-discovers parameters and proceeds to execution, a user could trigger an on-chain financial commitment without a clear last-step approval or warning about irreversible blockchain effects.

Missing User Warnings

Medium
Confidence
90% confidence
Finding
The skill declares compatibility with a configured `.env` containing `PRIVATE_KEY`, but provides no user-facing warning about the sensitivity of that credential or guidance to avoid exposing it during troubleshooting. In a tool-using agent context, references to sensitive wallet material materially increase the risk of unsafe handling, accidental disclosure, or normalization of private-key-based workflows without safeguards.

Credential Access

High
Category
Privilege Escalation
Content
- git-escrows
        - git
      config:
        - .env
    primaryEnv: PRIVATE_KEY
    homepage: https://github.com/arkhai-io/git-commit-trading
    emoji: "\U0001F512"
Confidence
86% confidence
Finding
.env

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal

Static analysis

No suspicious patterns detected.