Tp4
High
- Category
- MCP Tool Poisoning
- Confidence
- 95% confidence
- Finding
- The skill is presented as a trading/launchpad integration, but it also instructs the agent to download and use an external signing script and to handle raw private key material via environment variables and command-line arguments. That materially expands the trust boundary from API usage into wallet-key handling and transaction signing, which is a high-risk capability not clearly surfaced in the declared purpose and can expose users to theft if the downloaded script or generated transaction is malicious.
