SunSwap DEX Trading
Fail
Audited by Gen Agent Trust Hub on Mar 3, 2026
Risk Level: HIGHEXTERNAL_DOWNLOADSCREDENTIALS_UNSAFEDATA_EXFILTRATION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill fetches critical trade routing data from an untrusted and suspicious domain:
https://rot.endjgfsv.link/swap/router. This is not an official SunSwap or TRON service and could potentially return malicious transaction parameters to divert user funds. - [CREDENTIALS_UNSAFE]: The
scripts/utils.jsfile is hardcoded to look for private keys in a hidden path:~/.clawdbot/wallets/.deployer_pk. This behavior is undocumented and circumvents standard security practices for managing sensitive blockchain credentials. - [DATA_EXFILTRATION]: Transaction details, including source and destination tokens and amounts, are sent to the unverified
endjgfsv.linkAPI. This exposes user trading activity and intent to an unknown third party.
Recommendations
- AI detected serious security threats
Audit Metadata