foundry
Pass
Audited by Gen Agent Trust Hub on Mar 5, 2026
Risk Level: SAFENO_CODE
Full Analysis
- [NO_CODE]: The skill is entirely composed of markdown documentation (SKILL.md) and does not include any executable scripts, binaries, or active configuration files.
- [CREDENTIALS_UNSAFE]: The documentation provides examples of how to manage sensitive information such as
ETH_PRIVATE_KEYandETHERSCAN_API_KEYusing environment variables. This is standard practice for the Foundry toolkit, though it highlights the high-privilege nature of the operations described. - [COMMAND_EXECUTION]: The skill outlines several CLI commands for the
forgeandcastutilities. These are intended for local execution by a developer or agent to manage blockchain smart contracts. - [EXTERNAL_DOWNLOADS]: The documentation references external integration points, such as a Docker image (
foundryparis/evm:latest) and remote dependency fetching through Git submodules. These are standard features of the blockchain development workflow described.
Audit Metadata