Autobahn

Security checks across malware telemetry and agentic risk

Overview

Autobahn appears purpose-built for on-chain entity operations, but it needs review because it installs an unverified external CLI that handles wallet keys and high-impact legal and financial actions.

Install only if you trust the Autobahn publisher and release source. Verify the downloaded CLI out of band before using it, start with a low-value wallet/entity, avoid passing private keys or passwords on the command line, and manually review every transaction, governance action, document hash, public post, bounty, and transfer before confirming.

SkillSpector

By NVIDIA

Vulnerability Patterns

Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (1)

Missing User Warnings

Medium

Confidence: 95% confidence
Finding: The script downloads an executable from GitHub and installs it directly into a user-controlled bin directory, then marks it executable, without any integrity verification such as a checksum or signature check. This creates a real supply-chain risk: if the release asset, network path, repository, or version input is compromised or redirected, the user may silently install and later execute a malicious binary.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal