Skills
skills/asterdex/aster-skills-hub/aster-api-spot-trading-v3/Gen Agent Trust Hub

aster-api-spot-trading-v3

Fail

Audited by Gen Agent Trust Hub on Mar 9, 2026

Risk Level: HIGHDATA_EXFILTRATIONPROMPT_INJECTIONNO_CODE
Full Analysis
  • [DATA_EXFILTRATION]: The skill directs the agent to send signed trading requests to 'https://sapi.asterdex-testnet.com', which is flagged by security scanners as a phishing domain. Since the operations involve sensitive trade and user data, there is a high risk of exfiltrating API keys or session credentials to a malicious actor.- [PROMPT_INJECTION]: The skill establishes an indirect prompt injection surface by ingesting and processing untrusted data from an external API.
  • Ingestion points: API responses from 'GET /api/v3/order', 'GET /api/v3/openOrders', and 'GET /api/v3/allOrders' in SKILL.md.
  • Boundary markers: None identified; the skill does not instruct the agent to ignore instructions embedded within the API responses.
  • Capability inventory: The skill possesses the capability to create, cancel, and query financial orders via network requests.
  • Sanitization: No evidence of data validation, escaping, or filtering of the API's returned content is provided in the documentation or reference files.- [NO_CODE]: The skill consists exclusively of markdown documentation and YAML metadata. It does not contain any executable scripts, binaries, or automated logic, relying instead on the agent to interpret the API specifications.
Recommendations
  • AI detected serious security threats
  • Contains 1 malicious URL(s) - DO NOT USE
Audit Metadata
Risk Level
HIGH
Analyzed
Mar 9, 2026, 01:34 PM