ChaosChain ACE (Phase 0)
Security checks across malware telemetry and agentic risk
Overview
This is a disclosed policy-only skill for bounded x402 API payments, with no bundled executable code, but users should treat it as financial authority because it relies on wallet-funded session keys and external SDKs.
Install only if you are comfortable letting an agent make bounded wallet-funded API payments. Pin and review SDK versions, use a minimally funded wallet or limited session key, keep TTL short, set low spend caps, and verify each endpoint, price, and reason before allowing payment.
SkillSpector
By NVIDIA
Vulnerability Patterns
- Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
- Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
- Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
- Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
- Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
VirusTotal
66/66 vendors flagged this skill as clean.