bankr
Pass
Audited by Gen Agent Trust Hub on Apr 1, 2026
Risk Level: SAFE
Full Analysis
- [COMMAND_EXECUTION]: The skill leverages the
bankrCLI to perform blockchain operations, manage configuration, and interact with the Bankr platform. These commands are integral to the skill's primary function as a trading assistant. - [EXTERNAL_DOWNLOADS]: The skill interacts with official vendor-owned domains such as
api.bankr.botandllm.bankr.botto process natural language prompts and access LLM models. It also utilizes the@bankr/clipackage from the NPM registry. - [CREDENTIALS_SAFE]: The documentation provides extensive guidance on the secure management of sensitive data. It explicitly recommends storing API keys in environment variables, using
.gitignoreto prevent credential leakage, and setting restrictive file permissions (chmod 600) on local configuration files. - [DATA_EXFILTRATION]: While the skill handles financial and wallet data, the operations are restricted to the vendor's infrastructure and the specified blockchains. The skill includes security features like IP whitelisting and read-only API keys to mitigate the risk of unauthorized data access.
- [REMOTE_CODE_EXECUTION]: The skill facilitates the submission of raw EVM transactions and calldata. This is a core feature for advanced DeFi operations and is documented with appropriate safety warnings regarding the irreversibility of blockchain transactions.
Audit Metadata