Skills
skills/aibtcdev/skills/validation/Gen Agent Trust Hub

validation

Pass

Audited by Gen Agent Trust Hub on Mar 15, 2026

Risk Level: SAFE
Full Analysis
  • [SAFE]: The skill follows secure coding practices for a CLI tool, including robust validation of hex strings and integer ranges. No evidence of data exfiltration, hardcoded credentials, or malicious remote code execution was found.
  • [INDIRECT_PROMPT_INJECTION]: The skill processes untrusted external data that could contain malicious instructions for an LLM.
  • Ingestion points: The request-uri, response-uri, and tag arguments in validation.ts allow for arbitrary string input that is stored on-chain or processed by the agent. Read operations like get-status retrieve this data from the blockchain.
  • Boundary markers: There are no explicit boundary markers or instructions to the model to ignore content within the URIs or tags.
  • Capability inventory: The skill possesses the capability to execute smart contract transactions via requestValidation and submitValidationResponse in validation.ts using the user's wallet.
  • Sanitization: While the tool validates hex formats and integer ranges, it does not sanitize the content of URIs or classification tags, which are passed directly to the service layer.
Audit Metadata
Risk Level
SAFE
Analyzed
Mar 15, 2026, 01:14 PM