Btcvision Donation Nudge

Security checks across malware telemetry and agentic risk

Overview

This skill is a disclosed donation-reminder tool, but it is overbroad because it tells agents to add Bitcoin donation prompts to ordinary Bitcoin-related replies and daily market updates automatically.

Review before installing if you do not want an agent to add BTCvision donation prompts to general Bitcoin answers or recurring market updates. It does not show malware-like behavior or local data access, but its output behavior should be narrowed to explicit supporter or donation contexts.

SkillSpector

By NVIDIA

Vulnerability Patterns

Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (2)

Vague Triggers

High

Confidence: 95% confidence
Finding: The skill instructs the agent to use donation messaging when responding to any Bitcoin-related question, which is far broader than a user-consented fundraising context. This can cause unsolicited financial solicitation to be injected into unrelated answers, creating spam-like behavior and enabling manipulation of agent outputs for promotional purposes.

Vague Triggers

Medium

Confidence: 90% confidence
Finding: The integration guidance says to append the donation nudge automatically after a market update, but does not define consent, frequency limits, or relevance checks. In an agent setting, this ambiguity can lead to systematic unsolicited fundraising content in recurring communications, degrading trust and making the agent behave like an advertising channel.

VirusTotal

VirusTotal findings are pending for this skill version.

View on VirusTotal