Trust Assessment
Kaspa Wallet received a trust score of 10/100, placing it in the Untrusted category. This skill has significant security findings that require attention before use in production.
SkillShield's automated analysis identified 7 findings: 2 critical, 4 high, 1 medium, and 0 low severity. Key findings include Malicious install hooks, Arbitrary command execution, Dangerous call: subprocess.run().
The analysis covered 4 layers: Manifest Analysis, Static Code Analysis, Dependency Graph, LLM Behavioral Safety. The Manifest Analysis layer scored lowest at 40/100, indicating areas for improvement.
Last analyzed on February 13, 2026 (commit 13146e6a). SkillShield performs automated 4-layer security analysis on AI skills and MCP servers.
Layer Breakdown
Behavioral Risk Signals
Security Findings7
| Severity | Finding | Layer | Location | |
|---|---|---|---|---|
| CRITICAL | Malicious install hooks Python setup.py with suspicious imports Review all lifecycle scripts carefully. Remove install hooks that make network requests, execute shell commands, or access environment variables. Use --ignore-scripts for npm installs when possible. | Manifest | skills/manyfestation/kaspa-wallet/install.py:146 | |
| CRITICAL | Arbitrary command execution Python shell execution (os.system, subprocess) Review all shell execution calls. Ensure commands are static (not built from user input), use absolute paths, and are strictly necessary. Prefer library APIs over shell commands. | Manifest | skills/manyfestation/kaspa-wallet/install.py:89 | |
| HIGH | Dangerous call: subprocess.run() Call to 'subprocess.run()' detected in function 'run_command'. This can execute arbitrary code. Avoid using dangerous functions like exec/eval/os.system. Use safer alternatives. | Static | skills/manyfestation/kaspa-wallet/install.py:89 | |
| HIGH | Command Injection via KASPA_PYTHON environment variable The `install.py` script and `kaswallet.sh` both use the `KASPA_PYTHON` environment variable to determine which Python executable to use. If this variable is set to a path to a malicious executable, the script will execute it, leading to arbitrary command execution. This is a direct command injection vulnerability as the value of an environment variable is used to construct and execute a command without sufficient validation. Strictly validate the `KASPA_PYTHON` environment variable to ensure it points to a legitimate Python interpreter. Consider checking if the path contains 'python' or is within known Python installation directories, or disallow arbitrary executables. Alternatively, remove the ability to override the Python executable via an environment variable if not strictly necessary. | LLM | install.py:100 | |
| HIGH | Command Injection via KASPA_PYTHON environment variable in shell script The `kaswallet.sh` script uses the `KASPA_PYTHON` environment variable to locate the Python interpreter for bootstrapping. If an attacker can control this environment variable, they can set it to a path to a malicious executable. The script will then execute this malicious program instead of a Python interpreter, leading to arbitrary command execution. Strictly validate the `KASPA_PYTHON` environment variable to ensure it points to a legitimate Python interpreter. Consider checking if the path contains 'python' or is within known Python installation directories, or disallow arbitrary executables. Alternatively, remove the ability to override the Python executable via an environment variable if not strictly necessary. | LLM | kaswallet.sh:38 | |
| HIGH | Unpinned dependency in requirements.txt The `requirements.txt` file specifies the `kaspa` package without a version pin. This means that `pip install -r requirements.txt` will always fetch the latest available version of `kaspa`. If a malicious update is pushed to the PyPI repository for `kaspa`, this skill would automatically install and execute the compromised version, leading to a supply chain attack. Pin the `kaspa` dependency to a specific version (e.g., `kaspa==X.Y.Z`) or at least a major/minor version (e.g., `kaspa~=X.Y`) to prevent automatic installation of potentially malicious or breaking updates. Regularly review and update pinned versions. | LLM | requirements.txt:1 | |
| MEDIUM | Unpinned Python dependency version Requirement 'kaspa' is not pinned to an exact version. Pin Python dependencies with '==<exact version>'. | Dependencies | skills/manyfestation/kaspa-wallet/requirements.txt:1 |
Scan History
Embed Code
[](https://skillshield.io/report/4ccf842320a6abd0)
Powered by SkillShield