Nansen Perp Trader Profile
Security checks across malware telemetry and agentic risk
Overview
The skill’s trader-profiling instructions are coherent, but it grants broad Nansen CLI access to a tool that can also perform wallet and trading actions.
Install only if you are comfortable letting the agent run any `nansen` command, not just the trader-profile lookups shown. Review proposed commands before execution, especially if your Nansen CLI has wallets, Privy credentials, or payment/trading setup configured; a narrower permission limited to research commands would better match the stated purpose.
SkillSpector
By NVIDIA
Vulnerability Patterns
- Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
- Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
- Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
- Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
- Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
VirusTotal
65/65 vendors flagged this skill as clean.