Skills
skills/abstract-foundation/agw-cli/trading-on-uniswap/Gen Agent Trust Hub

trading-on-uniswap

Pass

Audited by Gen Agent Trust Hub on Mar 24, 2026

Risk Level: SAFEPROMPT_INJECTIONCOMMAND_EXECUTIONDATA_EXFILTRATION
Full Analysis
  • [PROMPT_INJECTION]: The skill exhibits a surface for indirect prompt injection because it ingests and processes external data from the DexScreener API.
  • Ingestion points: Market discovery data is retrieved from api.dexscreener.com as described in SKILL.md.
  • Boundary markers: The skill does not explicitly use boundary markers or instructions to ignore embedded commands within the fetched API data.
  • Capability inventory: The agent has the capability to execute on-chain transactions via the agw contract write tool, which could be targeted by malicious payloads in the API response.
  • Sanitization: While jq is used for basic filtering of the JSON response, there is no validation of the textual content against potential injection patterns.
  • [COMMAND_EXECUTION]: The skill uses the agw CLI tool to perform wallet operations and execute smart contract transactions on the Abstract network.
  • Evidence: Instructions in SKILL.md and reference files demonstrate the use of agw wallet balances, agw contract write, and agw tx calls. These tools are native to the Abstract-Foundation vendor environment.
  • [DATA_EXFILTRATION]: Fetches token price and pair discovery data from the DexScreener public API.
  • Evidence: SKILL.md includes a curl command to query api.dexscreener.com. DexScreener is a well-known service in the decentralized finance space.
Audit Metadata
Risk Level
SAFE
Analyzed
Mar 24, 2026, 12:11 PM