Back to skill

Security audit

bridging

Security checks across malware telemetry and agentic risk

Overview

This is a Celo bridging reference skill with no self-running code, but its examples can move real crypto assets if reused.

Install only if you want Celo bridge reference material. Before using any listed URL, contract address, or code sample, verify it against current official documentation and block explorers, confirm the chain, token, amount, route, fees, bridge status, and destination, and approve wallet prompts only after understanding the transfer may be irreversible and may expose transaction metadata to third-party services.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Findings (2)

Missing User Warnings

Medium
Confidence
93% confidence
Finding
The example shows how to initiate a live bridge transaction that moves real value across chains, but it does not prominently warn that bridging is operationally risky, may be irreversible, and can result in loss from wrong chain/address selection, bridge outages, or delays. In an agent-skill context, example code is likely to be reused directly, so omission of safety guidance materially increases the chance of unsafe fund movement.

Missing User Warnings

Medium
Confidence
89% confidence
Finding
The LI.FI example submits the user's address to a third-party routing/bridging service and proceeds to execute a route without warning that wallet addresses and transaction intent may be shared with external infrastructure. This creates privacy and operational risk because users may not realize their address, token preferences, and bridge activity are exposed to a third party before execution.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal

Static analysis

No suspicious patterns detected.