Skills
skills/almanak-co/almanak-sdk/almanak-strategy-builder/Gen Agent Trust Hub

almanak-strategy-builder

Fail

Audited by Gen Agent Trust Hub on Mar 10, 2026

Risk Level: HIGHREMOTE_CODE_EXECUTIONPROMPT_INJECTIONSAFE
Full Analysis
  • [REMOTE_CODE_EXECUTION]: The documentation includes a command to install the Foundry toolkit via curl -L https://foundry.paradigm.xyz | bash. While Foundry is a reputable and well-known development suite, this pattern involves direct shell execution of a remote script.
  • [INDIRECT_PROMPT_INJECTION]: The skill exhibits an attack surface for indirect prompt injection. Ingestion points: Market data (prices, RSI, etc.) provided via MarketSnapshot in the decide() method. Boundary markers: Not identified in the strategy logic. Capability inventory: Execution of DeFi transactions (swaps, liquidity provision, lending) and almanak CLI command execution. Sanitization: No explicit validation or filtering of market data inputs is shown in the code examples.
  • [SAFE]: The skill references the official almanak package and correctly identifies vendor resources. It follows best practices for secret management by documenting the use of .env files for private keys rather than hardcoding credentials.
Recommendations
  • HIGH: Downloads and executes remote code from: https://foundry.paradigm.xyz - DO NOT USE without thorough review
Audit Metadata
Risk Level
HIGH
Analyzed
Mar 10, 2026, 07:56 AM