ClawHub

OKX Competition Manager

Security checks across malware telemetry and agentic risk

Overview

This is a real-money-capable autonomous OKX trading setup with disclosed but high-impact trading-key use, unattended restart behavior, and missing core trading code for review.

Install only if you understand this is autonomous trading automation. Keep it in OKX Demo mode unless you have independently reviewed the missing JavaScript files, restricted API permissions, set strict capital and loss limits, know how to stop the scheduled task, and are prepared to revoke the OKX keys immediately. Do not use live keys unless you accept the risk of real financial loss.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • MCP Tool PoisoningHidden Instructions, Unicode Deception, Parameter Description Injection
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (2)

Intent-Code Divergence

Medium
Confidence
90% confidence
Finding
The document emphasizes 'zero risk' in demo mode while also advertising an easy path to live trading with the same system. In a trading skill, this framing can create unsafe operator trust and lead users to deploy autonomous order execution with real funds without fully appreciating financial-loss risk, especially because the skill handles continuous trading and supports live API credentials.

Missing User Warnings

Medium
Confidence
95% confidence
Finding
The live-trading section provides concrete steps to switch from demo to live but does not include a strong warning that the system will autonomously place real-money orders and may incur substantial losses despite stop-losses and caps. In context, this is more dangerous because the skill is an always-on trading automation system with cron restarts, evolution logic, and credential-based exchange access, so understated risk can directly enable harmful real-world actions.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal