Back to skill

Security audit

x402 (official examples)

Security checks across malware telemetry and agentic risk

Overview

This is a legitimate x402 payment guide, but it gives an agent direct crypto payment-signing capability without enough built-in approval or spending-limit guidance.

Install only if you intend to let the agent work with x402 payments. Use testnet or a dedicated low-balance wallet, never a primary wallet, keep private keys out of logs and chat, require explicit confirmation before each paid request, and set external wallet or facilitator-side limits where possible.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Findings (1)

Missing User Warnings

Medium
Confidence
92% confidence
Finding
The skill provides ready-to-run buyer examples that load private keys from environment variables, automatically sign blockchain payments, and send outbound requests to potentially remote resource servers and facilitators, but it does not prominently warn users that executing these examples can spend real funds or transmit signed payment data off-host. In an agent-skill context, this omission is risky because users may treat the examples as harmless API demos when they actually authorize monetary transactions and expose payment metadata to third parties.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal

Static analysis

No suspicious patterns detected.