tracking-crypto-portfolio
Pass
Audited by Gen Agent Trust Hub on Apr 23, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill integrates with the official CoinGecko public API to retrieve cryptocurrency market prices. This is a well-established and trusted service for financial data.
- [SAFE]: Local file operations are restricted to reading user-provided portfolio JSON files and writing formatted reports (JSON, CSV, or Table). There is no evidence of unauthorized access to sensitive files or data exfiltration.
- [SAFE]: The command execution is scoped to local Python scripts that perform data processing and valuation calculations. These scripts use standard, verified libraries such as 'requests' for network operations.
- [SAFE]: User data from portfolio files is strictly validated—converting symbols to strings and quantities to floats—which mitigates risks associated with indirect prompt injection.
Audit Metadata