The Agent Skills Directory

[COMMAND_EXECUTION] (MEDIUM): The scripts set-avatar.sh, set-primary.sh, and verify-primary.sh use node -e to run JavaScript code where shell variables (e.g., $ENS_NAME, $AVATAR_URL) are interpolated directly into single-quoted strings. This allows for code injection. For example, an ENS name containing a single quote followed by JavaScript code (e.g., name.eth'; require('fs').readFileSync('/etc/passwd'); //) would be executed by the Node.js process.\n- [EXTERNAL_DOWNLOADS] (MEDIUM): The skill requires installing @bankr/cli and viem globally. While viem is a standard library, @bankr/cli is an unverifiable tool from a source not included in the trusted list, which poses a risk if the package is compromised or malicious.\n- [DATA_EXFILTRATION] (SAFE): Network communication is limited to standard blockchain infrastructure (The Graph, public RPCs, Thirdweb) for resolving names and checking addresses. No evidence of sensitive data harvesting or unauthorized exfiltration was found.

ens-primary-name