Crypto One Way Market

Security checks across malware telemetry and agentic risk

Overview

This skill transparently fetches public cryptocurrency candle data and runs local trend calculations, with no evidence of credential theft, hidden persistence, or destructive behavior.

Install only if you are comfortable with the agent making public Binance-compatible API requests and, when you request it, writing candle data to a CSV path. Do not treat the output as trading advice, and be cautious with custom --base-url values because they determine where the agent sends market-data requests.

SkillSpector

By NVIDIA

Vulnerability Patterns

MCP Least PrivilegeUnderdeclared Capability, Wildcard Permission, Missing Permission Declaration
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (1)

Lp3

Medium

Category: MCP Least Privilege
Confidence: 95% confidence
Finding: The skill instructs the agent to execute a Python script that performs network access to Binance and can write output files, but the manifest declares no corresponding permissions. This creates a capability/permission mismatch that can bypass operator expectations and weakens security review, because a seemingly low-privilege skill can still trigger outbound requests and local file creation.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal