Skills
skills/austintgriffith/ethskills/orchestration/Gen Agent Trust Hub

orchestration

Pass

Audited by Gen Agent Trust Hub on Mar 13, 2026

Risk Level: SAFEPROMPT_INJECTIONCOMMAND_EXECUTIONEXTERNAL_DOWNLOADS
Full Analysis
  • [PROMPT_INJECTION]: The skill describes an Agent-to-Agent commerce flow susceptible to Indirect Prompt Injection.
  • Ingestion points: Data is fetched from untrusted external agent endpoints using the x402Fetch utility as described in the commerce implementation example in SKILL.md.
  • Boundary markers: The example code lacks boundary markers or instructions to the agent to ignore potentially malicious embedded instructions in the fetched data.
  • Capability inventory: The implementation provides the agent with the capability to sign blockchain transactions and submit on-chain reputation feedback using private keys, as shown in the commerce flow in SKILL.md.
  • Sanitization: There is no evidence of data sanitization or validation performed on the external weatherData before it influences the agent's subsequent on-chain actions.
  • [COMMAND_EXECUTION]: Standard development and security diagnostic commands.
  • The skill instructs the use of yarn, npx, and grep for project initialization, deployment, and auditing the local codebase for leaked secrets. These are legitimate development tools used in a safe context.
  • [EXTERNAL_DOWNLOADS]: Retrieval of framework tools and ecosystem libraries.
  • The instructions include downloading the create-eth bootstrapper and installing ecosystem packages such as ethers and @x402/fetch. These resources are from well-known sources within the Ethereum development community.
Audit Metadata
Risk Level
SAFE
Analyzed
Mar 13, 2026, 11:36 PM