blave-quant
Warn
Audited by Socket on Jul 6, 2026
2 alerts found:
AnomalySecurityAnomalySKILL.md
LOWAnomalyLOW
SKILL.md
SUSPICIOUS. The skill's stated purpose largely matches its market-data and trading capabilities, and there is no obvious malware or installer abuse. However, it asks for a large set of exchange credentials, enables real-money trading and transfers, and publisher documentation indicates exchange connections/data may be routed through and analyzed by Blave rather than staying strictly between the user and official exchange APIs. The CONFIRM safety rule helps, but the third-party credential/data routing and broad financial action surface keep overall risk at medium-high.
Confidence: 83%Severity: 68%
Securityreferences/marketplace.md
MEDIUMSecurityMEDIUM
references/marketplace.md
Audit Metadata