Nla Fulfill

Security checks across malware telemetry and agentic risk

Overview

This skill matches its stated escrow purpose, but it can make wallet-backed blockchain transactions without enough explicit final confirmation safeguards.

Install only if you intend to let an agent assist with real blockchain escrow transactions. Use a dedicated low-balance wallet, verify the nla CLI package yourself, and require explicit confirmation of the network, wallet address, escrow UID, fulfillment UID, oracle address, gas and bond costs, destination/recipient, and exact fulfillment text before running fulfill or collect.

SkillSpector

By NVIDIA

Vulnerability Patterns

Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (1)

Missing User Warnings

Medium

Confidence: 92% confidence
Finding: The skill instructs the user to execute `nla escrow:collect` to transfer escrowed tokens, but it does not present a clear just-in-time warning that this is an irreversible on-chain transaction that may consume gas and move funds. In a wallet-enabled blockchain workflow, missing transaction-risk disclosure can cause users to authorize costly or unintended state changes without adequate confirmation.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal