ClawHub

Robonet

Security checks across malware telemetry and agentic risk

Overview

This skill is for live trading automation and is mostly transparent, but it gives an agent real-money deployment and restart paths without strong confirmation or risk-limit instructions.

Install only if you trust the Robonet MCP server and understand which wallet, vault, API key, and credit account it can use. Before any deployment or restart, require a separate explicit confirmation, use a dedicated low-balance account where possible, set conservative leverage and risk limits, validate with backtests first, and monitor active deployments so they can be stopped quickly.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (3)

Missing User Warnings

Medium
Confidence
94% confidence
Finding
This skill explicitly guides users from strategy creation and backtesting into `deployment_create` for live trading, but it does not include a prominent warning that deployment can place real orders, use real funds, and materially affect a connected wallet or vault. In a trading/deployment skill, that omission is especially dangerous because users may treat the workflow as a routine automation path and trigger irreversible financial actions without fully understanding the consequences.

Missing User Warnings

Medium
Confidence
96% confidence
Finding
The example prompt directly instructs the assistant to deploy a strategy to Hyperliquid with leverage, but it does not warn that this may initiate live trading on a real account. Because examples are highly likely to be copied verbatim, this creates a realistic path for accidental execution of real-money trades, especially in an environment that already exposes deployment tools.

Missing User Warnings

Medium
Confidence
89% confidence
Finding
The catalog documents live deployment, start, and stop actions for real trading on Hyperliquid, but it does not include an explicit warning that these tools can place real trades, move funds, or cause financial loss. In an agent setting, lack of clear safety framing increases the chance that a user or downstream model invokes operational tools as if they were harmless informational actions, leading to unintended real-world market exposure.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal