ClawHub

Toobit Trading

Security checks across malware telemetry and agentic risk

Overview

This is a disclosed Toobit trading helper, but it can use exchange API keys for financially sensitive actions like trades, cancellations, leverage changes, transfers, and withdrawals.

Install only if you intentionally want an agent to operate a Toobit account. Use a dedicated restricted API key, disable withdrawals unless required, enable IP restrictions if available, and manually verify every symbol, side, amount, price, leverage value, cancellation scope, destination address, and generated command before confirming any write action.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Tool MisuseTool Parameter Abuse, Chaining Abuse, Unsafe Defaults
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Findings (4)

Vague Triggers

Medium
Confidence
83% confidence
Finding
The skill description is broad enough to activate on generic trading-related requests, which can route users into a high-impact exchange-trading skill without a clearly scoped Toobit-specific intent. In a financial trading context, overly broad invocation increases the chance of unintended order placement, wallet actions, or credentialed account queries being offered in the wrong conversation.

Missing User Warnings

Medium
Confidence
89% confidence
Finding
The setup instructions direct exposure and use of API credentials from environment variables but do not include a clear warning not to print, log, echo, or reveal secrets back to the user. In an agent setting, credential-handling guidance without explicit secrecy constraints can lead to accidental disclosure of key presence, misuse of privileged keys, or unsafe operational habits around trading credentials.

Tool Parameter Abuse

High
Category
Tool Misuse
Content
#### Cancel All Open Orders
```
DELETE /api/v1/spot/openOrders
```
**WRITE: Confirm before executing**
Confidence
87% confidence
Finding
DELETE /api/v1/spot/openOrders

Tool Parameter Abuse

High
Category
Tool Misuse
Content
#### Batch Cancel Futures Orders
```
DELETE /api/v1/futures/batchOrders
```
**WRITE: Confirm before executing**
Confidence
88% confidence
Finding
DELETE /api/v1/futures/batchOrders

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal