ClawHub

Zapper

Security checks across malware telemetry and agentic risk

Overview

This skill is a disclosed, read-only Zapper API helper, with expected privacy and API-key handling cautions.

Install only if you are comfortable sending queried wallet addresses and portfolio-related requests to Zapper and storing a Zapper API key locally. Use a dedicated, revocable API key, restrict the config file permissions, and never place wallet private keys or seed phrases in this skill's config.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Rogue AgentSelf-Modification, Session Persistence
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (5)

Missing User Warnings

Medium
Confidence
92% confidence
Finding
The skill sends wallet addresses, portfolio lookups, NFT holdings, and transaction-history queries to Zapper's external GraphQL API, but the description does not clearly disclose this data flow. Users may reveal sensitive financial profiling data to a third party without informed consent, which creates privacy and compliance risk even if the API use is legitimate.

Missing User Warnings

Medium
Confidence
90% confidence
Finding
The documentation instructs users to place a live API key in a persistent local config file under their home directory without any guidance on file permissions, secret storage, or avoiding accidental disclosure. While this is common developer documentation, it increases the chance of credential leakage through backups, dotfile syncing, overly broad filesystem permissions, or accidental check-in of the config file.

Missing User Warnings

Medium
Confidence
95% confidence
Finding
The script sends wallet addresses and related query data to Zapper's third-party GraphQL API without any explicit user-facing disclosure or consent prompt. Wallet addresses are sensitive from a privacy perspective because they reveal balances, transaction history, DeFi positions, and NFTs, and the skill context is specifically designed to aggregate this data across many chains, increasing privacy impact.

External Transmission

Medium
Category
Data Exfiltration
Content
}

_post() {
  curl -s "$API" -X POST \
    -H "Content-Type: application/json" \
    -H "x-zapper-api-key: $API_KEY" \
    -d "$1"
Confidence
93% confidence
Finding
curl -s "$API" -X POST \ -H "Content-Type: application/json" \ -H "x-zapper-api-key: $API_KEY" \ -d

Session Persistence

Medium
Category
Rogue Agent
Content
Get your API key from [Zapper Dashboard](https://dashboard.zapper.xyz/settings/api) (free tier available):

```bash
mkdir -p ~/.clawdbot/skills/zapper
cat > ~/.clawdbot/skills/zapper/config.json << 'EOF'
{
  "apiKey": "YOUR_ZAPPER_API_KEY"
Confidence
90% confidence
Finding
mkdir -p ~/.clawdbot/skills/zapper cat > ~/.clawdbot

VirusTotal

63/63 vendors flagged this skill as clean.

View on VirusTotal