xpr-xmd
Security checks across malware telemetry and agentic risk
Overview
This skill appears to do the advertised XMD stablecoin work, but its write tools can sign real blockchain transactions with private-key environment variables that the manifest does not disclose.
Install only if you intend to allow XMD mint/redeem operations. Prefer read-only use unless needed, use a dedicated least-privileged XPR permission instead of a broad active key, verify amounts and collateral before setting confirmed=true, and understand that signed transactions can move real assets.
SkillSpector
By NVIDIA
Vulnerability Patterns
- Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
- Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
- Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
- Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
- Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
VirusTotal
65/65 vendors flagged this skill as clean.