nansen-wallet-manager

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 1.00). The prompt explicitly tells the agent to ask for API keys or a user's wallet password and then embed them verbatim into commands or environment variables (e.g., NANSEN_WALLET_PASSWORD="<password_from_user>" and nansen login --api-key <key>), forcing the LLM to handle/output secret values directly.

MEDIUM W009: Direct money access capability detected (payment gateways, crypto, banking).

• Direct money access detected (high risk: 1.00). The skill explicitly manages blockchain wallets and can execute token/native transfers. It provides commands to create wallets (local or server-side via Privy), export keys, and a "wallet send" command with flags (--to, --amount, --chain, --max) to broadcast transactions (including a dry-run option). The Privy provider is a server-side wallet integration (Privy API) for agents/automated workflows, and environment variables include PRIVY_APP_ID/SECRET. These are specific crypto/blockchain wallet and transaction capabilities intended to move funds, so this is direct financial execution.