ClawHub

P0 Systems

Security checks across malware telemetry and agentic risk

Overview

This skill is coherent API documentation for P0, but it gives an agent broad live crypto trading, token deployment, purchasing, and account-management authority without clear safety limits.

Install only if you intentionally want an agent to operate a P0 crypto account. Use a dedicated low-balance wallet/account and API key, keep secrets in environment or secret storage only, require manual approval for every deploy, swap, fee claim, purchase, upgrade, batch action, or key revocation, and set strict spending and slippage limits.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Tool MisuseTool Parameter Abuse, Chaining Abuse, Unsafe Defaults
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (5)

Missing User Warnings

Medium
Confidence
95% confidence
Finding
The skill explicitly enables token deployment, trading, fee claiming, and reinvestment of earned funds, but provides no warning that these actions can trigger irreversible on-chain transactions, financial loss, market-manipulation concerns, or regulatory risk. In an agent setting, omission of such safeguards increases the chance that an autonomous system executes high-risk financial operations without explicit user confirmation or risk acknowledgement.

Missing User Warnings

Low
Confidence
88% confidence
Finding
The setup instructs users to store and use a live API key without any guidance on secret handling, storage boundaries, log redaction, or least-privilege practices. In agent workflows, credentials are often propagated through prompts, tool calls, and logs, so failing to warn about secret exposure can lead to account compromise and unauthorized trading or account changes.

External Transmission

Medium
Category
Data Exfiltration
Content
Set `P0_API_KEY` in your environment. Get one by registering:

```bash
curl -X POST https://api.p0.systems/api/x402/register \
  -H "Content-Type: application/json" \
  -d '{"walletAddress": "YOUR_SOLANA_WALLET", "signature": "BASE58_ED25519_SIGNATURE", "message": "THE_MESSAGE_YOU_SIGNED"}'
```
Confidence
90% confidence
Finding
curl -X POST https://api.p0.systems/api/x402/register \ -H "Content-Type: application/json" \ -d '{"walletAddress": "YOUR_SOLANA_WALLET", "signature": "BASE58_ED25519_SIGNATURE", "message": "THE_M

External Transmission

Medium
Category
Data Exfiltration
Content
Set `P0_API_KEY` in your environment. Get one by registering:

```bash
curl -X POST https://api.p0.systems/api/x402/register \
  -H "Content-Type: application/json" \
  -d '{"walletAddress": "YOUR_SOLANA_WALLET", "signature": "BASE58_ED25519_SIGNATURE", "message": "THE_MESSAGE_YOU_SIGNED"}'
```
Confidence
90% confidence
Finding
https://api.p0.systems/

Tool Parameter Abuse

High
Category
Tool Misuse
Content
```
GET /account → account info, plan, campaign usage
POST /api-keys → generate additional API key
DELETE /api-keys/{id} → revoke a key
GET /pricing → credit pricing in SOL/USDC/P0
POST /credits/purchase → buy credits
GET /credits/balance → check balance
Confidence
92% confidence
Finding
DELETE /api-keys/{id}

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal