crypto-trader
Pass
Audited by Gen Agent Trust Hub on Feb 24, 2026
Risk Level: SAFENO_CODE
Full Analysis
- [NO_CODE]: The skill consists entirely of a markdown configuration file with no associated scripts, binaries, or executable logic provided in the package.
- [CREDENTIALS_UNSAFE]: Requests high-privilege environment variables (CRYPTO_API_KEY, CRYPTO_API_SECRET) to perform its intended financial operations.
- [PROMPT_INJECTION]: The skill is susceptible to indirect prompt injection as it processes untrusted external data (market research, social handles) and has high-impact capabilities (fund transfers, token swaps).
- Ingestion points: Market research data and social handle resolution logic.
- Boundary markers: No explicit delimiters or instructions to ignore embedded commands are present in the skill description.
- Capability inventory: The skill can execute token transfers to external wallets, swap tokens, and deploy new ERC-20 tokens.
- Sanitization: No evidence of input validation or sanitization for external data sources.
Audit Metadata