Storyclaw X2c Publish

Security checks across malware telemetry and agentic risk

Overview

This skill openly supports X2C publishing and wallet actions, but it gives an agent authority to claim, swap, and withdraw funds without clear confirmation or credential-safety safeguards.

Install only if you trust the publisher and intentionally want an agent to manage both X2C publishing and wallet functions. Use the least-privileged API key available, protect credential files, verify the API endpoint, and require manual confirmation for every publish, claim, swap, or withdrawal, including amount and destination address.

SkillSpector

By NVIDIA

Vulnerability Patterns

Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (2)

Missing User Warnings

Medium

Confidence: 94% confidence
Finding: The skill exposes asset-moving wallet actions such as claiming, swapping, and withdrawing funds, but it does not require or even recommend an explicit user confirmation step before execution. In an agent setting, this creates a real risk of unintended financial transactions from ambiguous prompts, prompt injection in surrounding context, or operator error.

Missing User Warnings

Medium

Confidence: 91% confidence
Finding: The skill instructs users to store API keys in local JSON files under credentials/{USER_ID}.json without any warning about file permissions, secret leakage, backups, logs, or source-control exposure. This increases the chance that a powerful API key for publishing and wallet actions is stored insecurely and later exfiltrated or misused.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal