lending
Pass
Audited by Gen Agent Trust Hub on Mar 15, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill utilizes
npxto fetch and execute thestarkfipackage from the npm registry to manage Starknet transactions. - [COMMAND_EXECUTION]: Operations such as supplying, borrowing, and repaying assets are performed by executing shell commands with the
starkfiCLI. - [SAFE]: An indirect prompt injection surface exists through the ingestion of blockchain data: Ingestion points (lend-pools, lend-status, balance), Boundary markers (None), Capability inventory (Bash shell execution via npx), Sanitization (None). The risk is considered low as the data is used for structured CLI parameters.
- [SAFE]: No prompt injection attempts, obfuscation techniques, or unauthorized data access patterns were detected.
Audit Metadata