Micro-Snowball

Security checks across malware telemetry and agentic risk

Overview

This skill is not malware, but it directs agents toward very high-leverage crypto trading without clear safety limits or credential boundaries.

Review carefully before installing. Use only paper trading or exchange testnet keys unless you intentionally want live leveraged trading, and do not provide unrestricted OKX or Binance API keys. Require explicit confirmation, hard loss limits, and restricted API permissions before allowing any live trade or leverage change.

SkillSpector

By NVIDIA

Vulnerability Patterns

Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (2)

Vague Triggers

Low

Confidence: 84% confidence
Finding: The skill exposes a generic one-command invocation with no stated preconditions, environment checks, or requirement for paper/sandbox mode, which can lead users to run a finance-related skill directly against live exchange-connected environments. In the context of a leveraged trading skill, broad invocation guidance increases the chance of unintended live execution and unsafe autonomous actions.

Missing User Warnings

High

Confidence: 96% confidence
Finding: The skill promotes 50x+ leverage, force-setting 50x isolated margin, and DCA recovery behavior without a clear warning that these are live trading actions capable of rapidly liquidating positions and compounding losses. In a finance skill tied to OKX/Binance APIs, the absence of prominent risk disclosures and operational safeguards makes accidental or uninformed use materially dangerous.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal