Skills
skills/ahmetenesdur/starkfi/staking/Gen Agent Trust Hub

staking

Warn

Audited by Gen Agent Trust Hub on Mar 15, 2026

Risk Level: MEDIUMEXTERNAL_DOWNLOADSREMOTE_CODE_EXECUTIONCOMMAND_EXECUTION
Full Analysis
  • [EXTERNAL_DOWNLOADS]: The skill relies on npx starkfi@latest for its core operations, which downloads and executes the latest version of the starkfi package from the npm registry every time a command is run.
  • [REMOTE_CODE_EXECUTION]: The use of npx to fetch and execute external packages from a remote repository constitutes a remote code execution vector, as the code being executed is not bundled with the skill and is subject to change at the source.
  • [COMMAND_EXECUTION]: The allowed-tools section defines commands using broad wildcards (e.g., Bash(npx starkfi@latest stake *)). This configuration allows for shell command injection because any string provided by a user can be appended to the command line execution, potentially leading to unauthorized system access or manipulation if malicious parameters like semicolons or pipe characters are used.
Audit Metadata
Risk Level
MEDIUM
Analyzed
Mar 15, 2026, 04:43 PM