ClawHub

NexusWeb3 Financial Infrastructure

Security checks across malware telemetry and agentic risk

Overview

This appears to be a real Base mainnet finance skill, but it gives an agent live wallet authority without enough scoping, confirmation guidance, or loss-risk disclosure.

Install only if you intentionally want an agent to interact with real Base mainnet contracts. Use a dedicated low-balance wallet or tightly capped operator key, never a primary wallet key, manually review every approval and fund-moving transaction, and be prepared to revoke or rotate the key immediately if anything looks wrong.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (3)

Missing User Warnings

Medium
Confidence
91% confidence
Finding
The README instructs users to configure an `ETH_PRIVATE_KEY` and hold real funds on Base mainnet, but it does not include explicit warnings about secret-handling, wallet isolation, transaction irreversibility, or financial loss. In an agent skill context, this is more dangerous because users may connect automation to a hot wallet and allow unattended on-chain actions, increasing the chance of fund loss if the skill is misconfigured, compromised, or misunderstood.

Missing User Warnings

Medium
Confidence
95% confidence
Finding
The skill instructs users to configure an on-chain operator key and emphasizes limited permissions, but it does not clearly warn that the key can still authorize real Base mainnet transactions that spend operator-controlled funds. In an agent context, this omission can cause users to grant live transaction capability without understanding the financial consequences of autonomous or mistaken actions.

Missing User Warnings

Medium
Confidence
93% confidence
Finding
The quick-start and transactional examples encourage immediate vault, registry, and escrow interactions without a prominent warning that these are irreversible on-chain actions involving real assets and fees. Because the skill is user-invocable and targets Base mainnet, an agent or user may execute examples as-is and unintentionally lock, transfer, or spend funds.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal