ClawHub
Back to skill

Security audit

Crypto Arbitrage Monitor

Security checks across malware telemetry and agentic risk

Overview

This is a disclosed crypto price monitor that polls public exchange data and optionally sends user-configured alerts, with no evidence of trading, destructive behavior, hidden persistence, or data theft.

Install only if you are comfortable running Python packages from PyPI, preferably pin or lock dependency versions yourself, keep Feishu/Telegram credentials private, configure only alert destinations you control, and remember the monitor will keep polling exchange APIs until stopped.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • MCP Least PrivilegeUnderdeclared Capability, Wildcard Permission, Missing Permission Declaration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Findings (6)

Lp3

Medium
Category
MCP Least Privilege
Confidence
92% confidence
Finding
The skill documentation describes network-capable behavior such as querying multiple exchanges and sending Feishu/Telegram alerts, but the skill metadata does not declare corresponding permissions. Missing permission declarations weaken transparency and policy enforcement, making it easier for a skill to perform outbound communication that users or a platform may not expect.

Unpinned Dependencies

Low
Category
Supply Chain
Content
ccxt>=4.0.0
requests>=2.28.0
python-dotenv>=1.0.0
Confidence
95% confidence
Finding
ccxt>=4.0.0

Unpinned Dependencies

Low
Category
Supply Chain
Content
ccxt>=4.0.0
requests>=2.28.0
python-dotenv>=1.0.0
Confidence
98% confidence
Finding
requests>=2.28.0

Unpinned Dependencies

Low
Category
Supply Chain
Content
ccxt>=4.0.0
requests>=2.28.0
python-dotenv>=1.0.0
Confidence
93% confidence
Finding
python-dotenv>=1.0.0

Known Vulnerable Dependency: requests — 10 advisory(ies): CVE-2014-1830 (Exposure of Sensitive Information to an Unauthorized Actor in Requests); CVE-2024-47081 (Requests vulnerable to .netrc credentials leak via malicious URLs); CVE-2024-35195 (Requests `Session` object does not verify requests after making first request wi) +7 more

High
Category
Supply Chain
Confidence
90% confidence
Finding
requests

Known Vulnerable Dependency: python-dotenv — 1 advisory(ies): CVE-2026-28684 (python-dotenv: Symlink following in set_key allows arbitrary file overwrite via )

Low
Category
Supply Chain
Confidence
82% confidence
Finding
python-dotenv

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal