Skills
skills/0xpolygon/polygon-agent-cli/polygon-agent-kit/Gen Agent Trust Hub

polygon-agent-kit

Pass

Audited by Gen Agent Trust Hub on Apr 14, 2026

Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADSDATA_EXFILTRATIONPROMPT_INJECTION
Full Analysis
  • [COMMAND_EXECUTION]: The skill utilizes the polygon-agent CLI to perform blockchain operations including wallet creation, token transfers, and DeFi interactions.
  • [EXTERNAL_DOWNLOADS]: The skill requires the installation of the polygon-agent-kit directly from the 0xPolygon GitHub repository.
  • [DATA_EXFILTRATION]: The skill handles sensitive wallet credentials and configuration. It reads from and writes to ~/.polygon-agent/builder.json to manage encrypted private keys and project access tokens. Instructions also direct the agent to extract and export the accessKey from local storage for Polymarket operations.
  • [PROMPT_INJECTION]: The skill possesses an indirect prompt injection surface through the x402-pay command.
  • Ingestion points: External data is ingested from third-party APIs (such as web search, news, and code reviews) via the x402 bazaar service.
  • Boundary markers: No specific delimiters or "ignore instructions" markers are specified for the external data returned by the CLI.
  • Capability inventory: The skill allows the agent to execute shell commands via the polygon-agent binary and perform filesystem operations within the ~/.polygon-agent/ directory.
  • Sanitization: The instructions do not define sanitization or validation logic for data retrieved from external API endpoints.
Audit Metadata
Risk Level
SAFE
Analyzed
Apr 14, 2026, 10:16 PM