x402janus

Security checks across malware telemetry and agentic risk

Overview

This appears to be a real EVM wallet-security skill, but it asks for wallet-signing authority and its revoke tool can also grant token approvals.

Install only after reviewing the signing and transaction authority. Use a dedicated low-balance wallet, keep JANUS_API_URL pointed at the intended service, prefer free or dry-run modes first, review x402 payment terms before signing, and do not run --execute or pass --allowance unless you intend to submit that exact on-chain approval transaction.

SkillSpector

By NVIDIA

Vulnerability Patterns

MCP Tool PoisoningHidden Instructions, Unicode Deception, Parameter Description Injection
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (1)

Description-Behavior Mismatch

High

Confidence: 96% confidence
Finding: Although presented as a revoke tool, the script accepts an arbitrary --allowance value and can execute approve(spender, amount) on-chain, including nonzero approvals. In a wallet-security context, this is dangerous because a user or downstream agent may trust the tool to only reduce risk, while it can silently create or expand token spending permissions for any spender if invoked with crafted inputs.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal