styx
Warn
Audited by Gen Agent Trust Hub on Mar 10, 2026
Risk Level: MEDIUMCREDENTIALS_UNSAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTION
Full Analysis
- [CREDENTIALS_UNSAFE]: The skill accesses the local wallet's Bitcoin private key to sign PSBTs locally. This is a functional requirement for bridging but represents a high-privilege operation.
- [EXTERNAL_DOWNLOADS]: The skill communicates with the Styx protocol API and mempool.space to manage deposits and broadcast transactions. It also queries the Hiro Ordinals API for UTXO safety checks.
- [COMMAND_EXECUTION]: Implements a CLI for pool status, fee estimation, and the full deposit lifecycle, coordinating between the wallet and the Styx SDK.
Audit Metadata