evm-wallet-skill

CRITICAL E005: Suspicious download URL detected in skill instructions.

• Suspicious download URL detected (high risk: 0.90). Although hosted on GitHub (a common platform), this is an unvetted personal repository (surfer77) whose instructions require cloning, npm install and running node scripts that manage private keys and sign transactions—actions that could easily exfiltrate keys or perform malicious transactions—so it should be treated as highly suspicious unless audited.

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

• Potentially malicious external URL detected (high risk: 0.90). The skill's installation and update steps fetch and install remote code from https://github.com/surfer77/evm-wallet-skill.git (via git clone/git pull and npm install), which would bring in and potentially execute remote JavaScript code that the skill relies on.

MEDIUM W009: Direct money access capability detected (payment gateways, crypto, banking).

• Direct money access detected (high risk: 1.00). The skill is explicitly a self-sovereign EVM crypto wallet designed to create wallets, hold private keys locally, check balances, send ETH/ERC20 tokens, execute token swaps, and perform contract write calls. It provides concrete commands for transfers (node src/transfer.js ... --yes --json), swaps (node src/swap.js ... --yes --json), and contract writes (node src/contract.js ... --yes --json). These are direct crypto transaction and signing capabilities (payment/transfer + blockchain signing), so it is specifically designed to move money on-chain.