pump-swarm
Coordinated multi-wallet trading on Pump.fun
63
49%
Does it follow best practices?
Impact
Pending
No eval scenarios have been run
Critical
Do not install without reviewing
Optimize this skill with Tessl
npx tessl skill review --optimize ./src/skills/bundled/pump-swarm/SKILL.mdSecurity
3 findings — 1 critical severity, 2 medium severity. Installing this skill is not recommended: please review these findings carefully if you do intend to do so.
E006: Malicious code pattern detected in skill scripts
What this means
Detected high-risk code patterns in the skill content — including its prompts, tool definitions, and resources — such as data exfiltration, backdoors, remote code execution, credential theft, system compromise, supply chain attacks, and obfuscation techniques.
Why it was flagged
Malicious code pattern detected (high risk: 0.90). This code is high-risk because it deliberately implements coordinated, stealthy multi-wallet trading and amplification (copytrading, timed/DCA strategies, distribute/consolidate, bundle atomicity, random delays and variance) that facilitate pump-and-dump/market-manipulation behavior, though the file contains no obvious technical backdoor, credential exfiltration, eval/exec, or remote code execution constructs.
W011: Third-party content exposure detected (indirect prompt injection risk)
What this means
The skill exposes the agent to untrusted, user-generated content from public third-party sources, creating a risk of indirect prompt injection. This includes browsing arbitrary URLs, reading social media posts or forum comments, and analyzing content from unknown websites.
Why it was flagged
Third-party content exposure detected (high risk: 0.80). The skill fetches live price and chain data from public third-party sources—notably fetchTokenPrice calls the external Jupiter API (https://api.jup.ag/price/...) and the code uses a configurable SOLANA_RPC_URL RPC endpoint to read on-chain positions—which the agent ingests at runtime (e.g., strategies use currentPrice) and these values directly influence trading decisions and tool actions.
W009: Direct money access capability detected (payment gateways, crypto, banking)
What this means
The skill is specifically designed for direct financial operations, giving the agent the ability to move money or execute financial transactions — such as payment processing, cryptocurrency operations, banking integrations, or market order execution.
Why it was flagged
Direct money access detected (high risk: 1.00). This skill is explicitly designed to execute cryptocurrency trades and move funds. It requires and uses private wallet keys (SOLANA_PRIVATE_KEY, SOLANA_SWARM_KEY_*), builds, signs, and submits on-chain transactions, integrates with RPC endpoints and DEX APIs (PumpPortal, Bags.fm, Meteora), and provides direct buy/sell commands (/swarm buy, /swarm sell) with execution modes (bundles, parallel, sequential). Those are specific crypto/blockchain transaction capabilities (wallet management, signing, submitting market orders), not generic tooling.
- Repository
- alsk1992/CloddsBot
- Commit
2a8c94e
- Audited
- Security analysis
Is this your skill?
If you maintain this skill, you can claim it as your own. Once claimed, you can manage eval scenarios, bundle related skills, attach documentation or rules, and ensure cross-agent compatibility.