ClawHub

Signet

Security checks across malware telemetry and agentic risk

Overview

This skill does what it says, but it needs review because it can spend crypto and publish ads using a raw wallet private key through an unpinned npm CLI.

Review before installing. Use only a dedicated low-balance wallet, avoid passing valuable private keys on the command line, pin and verify the npm CLI, run simulation or estimate first, and require explicit approval for the exact URL, duration, wallet, network, and cost before any real post.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (2)

Missing User Warnings

Medium
Confidence
95% confidence
Finding
The skill instructs users to perform a real posting flow using a PRIVATE_KEY environment variable or --private-key flag without clearly warning that this authorizes irreversible onchain spending and exposes highly sensitive credentials to the local shell, process list, logs, or agent tooling. In an agent context, this is especially dangerous because an autonomous system may follow the example directly and spend funds or mishandle the private key without explicit user confirmation.

Missing User Warnings

Medium
Confidence
94% confidence
Finding
The direct HTTP x402 example describes the payment flow and shows how to submit the final paid request, but it does not prominently warn that the second request can execute a real payment and onchain transaction. Because this skill is designed for AI-agent use, omission of a clear safety gate increases the risk of unintended autonomous spending against a live service.

VirusTotal

60/60 vendors flagged this skill as clean.

View on VirusTotal