hodlmm-arb-executor
Pass
Audited by Gen Agent Trust Hub on Apr 22, 2026
Risk Level: SAFE
Full Analysis
- [EXTERNAL_DOWNLOADS]: Fetches real-time price data and pool states from Pyth Network, Hiro's Stacks API, and Bitflow's official quote API.
- [DATA_EXPOSURE]: Accesses the
BITFLOW_API_KEYenvironment variable and maintains a local state file at~/.hodlmm-arb-executor-state.jsonto track positions and cooldowns. - [COMMAND_EXECUTION]: Generates structured MCP command objects (
bitflow_swap,bitflow_hodlmm_add_liquidity, etc.) intended for the agent to execute. It does not perform arbitrary shell execution. - [SAFE]: Implements a hardcoded absolute spend ceiling of 100,000 sats (~$85 USD) and uses a 2-hour timeout mechanism to automatically signal exits from stale positions.
Audit Metadata