Back to skill

Security audit

Bridge Cost Optimizer

Security checks across malware telemetry and agentic risk

Overview

The skill does not steal data or execute transfers, but it can present estimated bridge costs as live quotes for financial routing decisions.

Use this only as a rough comparison aid. Do not rely on its recommended route for signing a bridge transaction unless you independently verify current quotes directly with the bridge providers, especially for providers other than Across and deBridge.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • MCP Tool PoisoningHidden Instructions, Unicode Deception, Parameter Description Injection
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Findings (2)

Intent-Code Divergence

Medium
Confidence
91% confidence
Finding
The module advertises comparison of live bridge quotes, but several bridge functions return hard-coded structural estimates rather than real-time quotes. In a financial routing context, this can mislead users into selecting an apparently 'best' route based on inaccurate data, potentially causing monetary loss, failed transfers, or unsafe operational decisions.

Vague Triggers

Medium
Confidence
91% confidence
Finding
The manifest description contains broad trigger phrases such as 'bridge comparison', 'cross-chain transfer', and common token/chain combinations that can match ordinary user requests beyond a narrowly scoped tool invocation. In agent environments, this can cause over-selection of the skill for loosely related prompts, increasing the chance of unintended external data access, misleading recommendations, or workflow hijacking when the agent should have used a different tool or asked for clarification.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal

Static analysis

No suspicious patterns detected.