Back to skill

Security audit

WQBuddy

Security checks across malware telemetry and agentic risk

Overview

WQBuddy’s sensitive behavior is disclosed and aligned with its WorldQuant BRAIN automation purpose, but users should treat its local credential and token files carefully.

Install only if you are comfortable storing BRAIN credentials and optional LLM API keys in local files. Keep ~/.wq-buddy/config.json and ~/.wq-buddy/.wq_token.json user-only readable, do not expose the Web UI beyond localhost, and review any alpha submission or deletion action before confirming it.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Findings (2)

Missing User Warnings

Medium
Confidence
91% confidence
Finding
The skill advertises a local Web UI with auto-login that shares credentials/session state with the CLI, but the warning is minimal and does not clearly explain the security implications. Even for localhost-only services, shared authentication can expose sensitive trading credentials or active sessions to other local users, malware, browser compromise, or unintended network exposure if the server binds incorrectly.

Missing User Warnings

Medium
Confidence
88% confidence
Finding
The documentation states that the Web UI and CLI share authentication by reading and writing the same token file under `~/.wq-buddy/.wq_token.json`, but it does not document required file-permission hardening, local multi-user risks, or the security implications of auto-login. On a shared machine or weakly secured environment, another local process or user could reuse the cached token to access the BRAIN account for the token lifetime.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal

Static analysis

No suspicious patterns detected.