ClawHub

Tetrac Perp Trader

Security checks across malware telemetry and agentic risk

Overview

This real-money crypto trading skill has useful safety instructions, but it needs Review because its package claims missing bundled executables and its API docs show unsafe handling of exchange credentials.

Install only if you intend to let an agent interact with real crypto trading accounts. Before providing credentials, verify the actual executable/source package, use exchange API keys with withdrawals disabled and minimal trading permissions, avoid any URL-based credential flow, require dry-runs and explicit confirmations for writes, and tightly limit automated loops by symbol, size, duration, and stop conditions.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Findings (3)

Missing User Warnings

Medium
Confidence
90% confidence
Finding
The README documents commands that can place live perpetual futures orders, manage positions, and use real exchange credentials, but it does not prominently warn that these actions can execute real trades with financial loss. In an agent-oriented skill, this omission is more dangerous because an automated system may infer that example commands are safe to run, especially when only some examples mention --dry-run and others do not.

Missing User Warnings

Medium
Confidence
88% confidence
Finding
The documentation exposes high-impact destructive operations such as withdrawals, cancel-all-orders, and close-all-positions without explicit safety warnings, confirmation guidance, or least-privilege recommendations. In an agentic trading skill, this increases the chance that a user or downstream automation invokes financially irreversible actions without understanding the consequences.

Missing User Warnings

High
Confidence
99% confidence
Finding
The GET example places apiKey and apiSecret directly in query parameters, which are commonly logged by browsers, proxies, servers, monitoring systems, and shell history. This can lead to credential leakage and subsequent unauthorized trading access, account takeover of exchange API sessions, or fund loss via destructive exchange operations.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal