Uniswap Batch Swap

Security checks across malware telemetry and agentic risk

Overview

This skill is coherent for batch crypto swaps, but it can trigger multiple wallet-affecting trades without a clear user-approved transaction preview or risk disclosure.

Review before installing. Use only with a wallet and trade-executor setup you trust, with strict spending limits. Require explicit confirmation for the full batch and each swap, including exact token contracts, chain, input amounts, expected outputs, slippage, gas, and maximum total spend.

SkillSpector

By NVIDIA

Vulnerability Patterns

Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (1)

Missing User Warnings

Medium

Confidence: 94% confidence
Finding: The skill instructs an agent to execute irreversible token swaps involving real assets, but it does not communicate core financial risks such as slippage, market movement, irreversible settlement, or the possibility of permanent loss from incorrect token selection. In a trading skill, omitting these warnings can cause users to authorize high-impact actions without informed consent, especially when multiple swaps are executed in sequence and losses can compound across the batch.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal