Nansen Limit Orders

Security checks across malware telemetry and agentic risk

Overview

This skill is coherent for Nansen crypto limit orders, but it gives an agent broad wallet-backed trading authority and omits some important user-control and privacy warnings.

Review before installing. Use this only if you trust the Nansen CLI and are comfortable letting an agent assist with real crypto orders. Confirm wallet, token pair, side, amount, trigger price, slippage, expiry, and order ID before any create, cancel, or update command. Use private notification channels or dedicated webhooks, and avoid shared machines because API keys, wallet configuration, alert metadata, and the temporary Nansen JWT are sensitive.

SkillSpector

By NVIDIA

Vulnerability Patterns

Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (1)

Missing User Warnings

Medium

Confidence: 92% confidence
Finding: The skill explicitly instructs users to send wallet-linked alert data to third-party destinations such as Telegram, Slack, Discord, or generic webhooks, but it does not warn that wallet addresses, token activity, trading intent, and timing metadata may be exposed to those external services. This creates a real privacy and operational-security risk because users may unknowingly leak sensitive trading activity or infrastructure details to parties outside the primary platform.

VirusTotal

63/63 vendors flagged this skill as clean.

View on VirusTotal