Skills
skills/ahmetenesdur/fibx-agentic-wallet-skills/portfolio/Gen Agent Trust Hub

portfolio

Fail

Audited by Gen Agent Trust Hub on Apr 16, 2026

Risk Level: HIGHREMOTE_CODE_EXECUTIONEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
  • [REMOTE_CODE_EXECUTION]: The skill instructs the agent to run npx fibx@latest portfolio. This command downloads the fibx package from the npm registry and executes it immediately. Using @latest ensures the most recent version is fetched at runtime, which allows for remote code execution from an external source and bypasses version pinning and integrity checks.
  • [EXTERNAL_DOWNLOADS]: The use of npx initiates a network request to the npm registry to fetch external package code.
  • [COMMAND_EXECUTION]: The skill relies on the Bash tool to execute shell commands, specifically npx and its subcommands.
  • [PROMPT_INJECTION]: The skill processes untrusted data from external sources (cross-chain wallet holdings and DeFi positions) which creates a surface for indirect prompt injection.
  • Ingestion points: Tool output from npx fibx@latest portfolio mentioned in SKILL.md.
  • Boundary markers: Absent; the skill does not use delimiters to wrap the external data.
  • Capability inventory: The skill uses Bash to execute commands as specified in SKILL.md.
  • Sanitization: Absent; the skill provides no mechanism to sanitize or validate the data returned from the external tool.
Recommendations
  • AI detected serious security threats
Audit Metadata
Risk Level
HIGH
Analyzed
Apr 16, 2026, 08:58 AM