ClawHub

zapper-api

Security checks across malware telemetry and agentic risk

Overview

This is a read-only Zapper portfolio lookup skill that uses a Zapper API key and sends wallet queries to Zapper as expected.

Install only if you are comfortable using a Zapper API key and sending queried wallet addresses and related portfolio or transaction-history requests to Zapper. Use a dedicated API key, keep ~/.config/zapper/addresses.json private, and avoid adding labels or addresses you do not want exposed in local command output or third-party API queries.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
  • MCP Least PrivilegeUnderdeclared Capability, Wildcard Permission, Missing Permission Declaration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Findings (4)

Lp3

Medium
Category
MCP Least Privilege
Confidence
94% confidence
Finding
The skill requires both environment access (for ZAPPER_API_KEY) and network access (to call Zapper's external API), but those capabilities are not explicitly declared as permissions. This creates a transparency and policy gap: users and platforms may not realize the skill can read secrets and transmit wallet-related data off-box, increasing the risk of unintended data exposure or overly broad execution trust.

Context-Inappropriate Capability

Low
Confidence
83% confidence
Finding
The `config` command reveals locally configured wallet labels and partial addresses, which may expose sensitive financial metadata to whoever can invoke the skill or see its output. Even partial address disclosure can aid wallet correlation, deanonymization, or unintended leakage of a user's tracked accounts.

Missing User Warnings

Medium
Confidence
97% confidence
Finding
The skill documentation does not clearly warn users that wallet addresses, portfolio lookups, NFT holdings, and transaction history queries are sent to a third-party service. Even though blockchain addresses are public on-chain, associating them with user labels such as 'Main' or 'DeFi' and querying them through an external API can reveal sensitive behavioral and financial profiling information to that provider.

Missing User Warnings

Medium
Confidence
95% confidence
Finding
The skill sends wallet addresses and related portfolio/transaction query data to Zapper's third-party API without any explicit privacy notice, consent flow, or minimization controls. In a wallet/DeFi context, addresses and transaction history are highly sensitive because they can reveal holdings, behavior, counterparties, and identity-linked financial patterns.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal