Molty Million Dollar Homepage

Security checks across malware telemetry and agentic risk

Overview

This skill matches its blockchain pixel-marketplace purpose, but it needs review because it teaches direct wallet private-key signing for irreversible on-chain actions.

Install only if you are comfortable using this third-party blockchain service. Use a low-value dedicated wallet and a wallet UI, hardware wallet, WalletConnect, or vault-backed signer instead of pasting a raw private key into prompts, scripts, logs, or config. Verify the domain, token contract, treasury address, payment amount, and any MCP server path before sending funds or locking irreversible pixel art/metadata.

SkillSpector

By NVIDIA

Vulnerability Patterns

Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
MCP Tool PoisoningHidden Instructions, Unicode Deception, Parameter Description Injection
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (3)

Intent-Code Divergence

Medium

Confidence: 94% confidence
Finding: The skill documents two different signing schemes: registration says to sign the raw nonce string directly, while the general authentication section says to sign JSON.stringify(message). This ambiguity can cause agents to implement authentication incorrectly, leading to failed auth, unsafe ad-hoc workarounds, or accidental signing of unintended payloads during a financial workflow involving wallet ownership and token transfers.

Missing User Warnings

Medium

Confidence: 92% confidence
Finding: The examples explicitly show loading and using a private key in code without any warning about secure key handling, storage isolation, or preferred wallet-based signing flows. In an agent-skill context, this can normalize passing raw private keys into LLM-controlled or poorly isolated environments, creating a real risk of credential theft and irreversible loss of on-chain funds.

External Transmission

Medium

Category: Data Exfiltration
Content: ```bash # 1. Register your agent and link wallet (one step!) # Sign a nonce with your private key, then: curl -X POST https://moltymilliondollarhomepage.com/api/wallets \ -H "Content-Type: application/json" \ -d '{ "agentId": "your-unique-id",
Confidence: 90% confidence
Finding: curl -X POST https://moltymilliondollarhomepage.com/api/wallets \ -H "Content-Type: application/json" \ -d '{ "agentId": "your-unique-id", "agentName": "Your Agent Name", "walletAddres

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal