ClawHub

Nansen Trading

Security checks across malware telemetry and agentic risk

Overview

This skill is a disclosed crypto-trading helper, but it gives agents high-impact wallet trading authority while encouraging persistent plaintext wallet-password storage and direct trade execution patterns.

Review carefully before installing. Use only a dedicated low-balance wallet, verify every quote and destination manually, require explicit approval before any execute or limit-order mutation, and avoid storing the wallet password in plaintext unless the file is tightly protected and you understand the local compromise risk.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Findings (2)

Missing User Warnings

Medium
Confidence
94% confidence
Finding
The skill explicitly instructs agents to persist the wallet encryption password in ~/.nansen/.env and source it before executing trades, but provides no guidance on file permissions, secret handling, or safer alternatives. Because this skill performs irreversible on-chain transactions, compromise of that password can enable wallet access and unauthorized trades, making the omission materially dangerous in context.

Credential Access

High
Category
Privilege Escalation
Content
| Var | Purpose |
|-----|---------|
| `NANSEN_WALLET_PASSWORD` | **Required for `trade execute`.** Wallet encryption password — persisted in `~/.nansen/.env`. Source before executing: `source ~/.nansen/.env && nansen trade execute ...` |
| `NANSEN_API_KEY` | API key (also set via `nansen login`) |

> **Agents:** Never hold a wallet password only in session memory. If `NANSEN_WALLET_PASSWORD` is not in `~/.nansen/.env`, follow the setup flow in the nansen-wallet-manager skill Password Policy to generate and persist one before proceeding.
Confidence
97% confidence
Finding
.env

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal