Skills
skills/asterdex/aster-skills-hub/aster-api-spot-websocket-v3/Gen Agent Trust Hub

aster-api-spot-websocket-v3

Fail

Audited by Gen Agent Trust Hub on Mar 9, 2026

Risk Level: CRITICALNO_CODE
Full Analysis
  • [SAFE]: Analysis of the skill's documentation and referenced endpoints reveals no malicious intent or security vulnerabilities.
  • [EXTERNAL_DOWNLOADS]: The skill references WebSocket endpoints at sstream.asterdex-testnet.com. These domains are identified as legitimate vendor resources for 'asterdex' used for testnet market data and user event streaming.
  • [CREDENTIALS_UNSAFE]: The skill correctly describes the use of a 'listenKey' for authenticated sessions. This is a standard security practice for exchange APIs where credentials are exchanged for temporary session keys via signed REST requests and no secrets are hardcoded in the skill.
  • [NO_CODE]: This skill consists entirely of documentation and does not contain executable scripts or automated commands.
Recommendations
  • Contains 3 malicious URL(s) - DO NOT USE
Audit Metadata
Risk Level
CRITICAL
Analyzed
Mar 9, 2026, 01:34 PM