candlestick-analysis
Pass
Audited by Gen Agent Trust Hub on Mar 22, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSPROMPT_INJECTION
Full Analysis
- [SAFE]: The skill performs legitimate technical analysis of market data. It interacts with the DOME API (api.domeapi.io) to fetch historical price information as intended by its description. No malicious patterns, data exfiltration, or obfuscation were detected.
- [EXTERNAL_DOWNLOADS]: The skill makes network requests to 'api.domeapi.io' to fetch candlestick data. This communication is essential for the skill's primary function and targets the official API endpoint for the service.
- [PROMPT_INJECTION]: The skill ingests data from the DOME API, creating a surface for indirect prompt injection. Ingestion points: 'fetchCandlesticks' in 'scripts/candlestickAnalysis.ts'. Boundary markers: Absent. Capability inventory: Network access via 'fetch'. Sanitization: Content is mapped to a structured 'Candlestick' schema. Although boundary markers are missing, the processed data is purely financial and numerical, posing minimal risk.
Audit Metadata