ClawHub

SUPAH DeFi Optimizer

Security checks across malware telemetry and agentic risk

Overview

This appears to be a real paid DeFi API wrapper, but users should review its automatic USDC charges and wallet-data sharing before installing.

Install only if you are comfortable with a remote DeFi service receiving wallet or LP position identifiers and with automatic x402 USDC charges. Use a low-limit payment wallet or spending cap, verify the exact charge before each call, and leave SUPAH_API_BASE unset unless you intentionally trust an alternate endpoint.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (3)

Vague Triggers

Medium
Confidence
79% confidence
Finding
The usage examples are broad natural-language triggers such as 'Optimize my yield farming' and 'Compare APYs on Base', which could match common user requests and cause the skill to activate unexpectedly. In a paid, networked DeFi skill, over-broad activation can lead to unintended external data sharing or micropayment API calls without sufficiently explicit user intent.

Missing User Warnings

Medium
Confidence
93% confidence
Finding
The skill describes portfolio scanning and optimization over wallet data but does not clearly warn users that wallet addresses, DeFi positions, token approvals, and related portfolio metadata are sent to external services including SUPAH and Moralis. In a DeFi context, this is sensitive financial metadata, and undisclosed transmission can create privacy, profiling, and operational security risks.

Missing User Warnings

Medium
Confidence
92% confidence
Finding
The skill sends wallet addresses or position identifiers directly to a third-party remote API, which exposes potentially sensitive financial metadata outside the local environment. In a DeFi portfolio tool, these identifiers can reveal holdings, strategies, and wallet-linked activity, and the code provides no explicit warning, consent flow, or minimization of what is transmitted.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal