ClawHub

Crypto Swap

Security checks across malware telemetry and agentic risk

Overview

This is a disclosed LightningEX crypto-swap client; it handles real wallet addresses and orders, but the artifacts do not show hidden or unrelated behavior.

Install only if you trust the npm package and LightningEX. Treat every order as a real financial action: verify asset, network, amount, fees, destination address, deposit address, and support process before sending funds, and never provide private keys or seed phrases.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (5)

Vague Triggers

Medium
Confidence
83% confidence
Finding
The README presents order-management phrases like "Where is my order?" and "Monitor order ..." as triggers, which are broad enough to overlap with normal conversation and may cause the agent to enter an order-status flow without sufficiently explicit user intent. In a crypto-swap context, this increases the risk of acting on or disclosing sensitive transaction information based on ambiguous natural-language input, especially if order lookups are tied to account context or prior session state.

Vague Triggers

Medium
Confidence
91% confidence
Finding
The documentation says chat mode is the default and invites users to 'Simply talk to perform exchanges,' which makes ordinary conversational phrases plausible activation triggers. In a financial context, ambiguous activation increases the chance that casual discussion is interpreted as a real swap request, potentially leading to unintended transaction setup or execution.

Vague Triggers

Medium
Confidence
84% confidence
Finding
Examples like 'Where is my order?' and 'Monitor order I1Y0××××' are broad enough to overlap with normal conversation or unrelated order discussions. In a crypto service, accidental routing to order-status or monitoring flows can leak transaction metadata or cause the agent to act on the wrong order context.

Missing User Warnings

High
Confidence
97% confidence
Finding
This skill promotes crypto swaps and bridging but provides no prominent warning that blockchain transactions are irreversible, may incur fees/slippage, and can result in permanent loss if destination details are wrong. Because the skill directly concerns financial transfers across chains and networks, the absence of strong risk disclosure materially increases user harm from mistakes or social engineering.

Missing User Warnings

Medium
Confidence
94% confidence
Finding
The CLI sends the user’s destination cryptocurrency address to a third-party API for validation without an explicit privacy notice or local-first validation option. Wallet addresses can be sensitive metadata because they may reveal user holdings, transaction history, or identity links when correlated with other exchange activity.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal