registering-agent-base-dev
Pass
Audited by Gen Agent Trust Hub on Mar 26, 2026
Risk Level: SAFE
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill downloads the 'ox' package via npm, which is a standard library for Ethereum utilities. It also references official Base documentation and API endpoints (api.base.dev).
- [COMMAND_EXECUTION]: The skill executes a bundled shell script 'scripts/register.sh' to perform a registration API call. This script uses 'curl' to interact with the Base API. The execution is scoped to the registration task and handles errors appropriately.
- [DATA_EXFILTRATION]: While the skill performs a network POST request to 'api.base.dev', it only transmits the user-provided wallet address for the purpose of generating a builder code. No private keys, environment variables, or sensitive files are accessed or transmitted.
- [PROMPT_INJECTION]: The skill contains instructional markers like 'you MUST load this skill' and 'Permanent Rule', but these are used to ensure the agent follows the correct protocol for transaction attribution rather than to bypass safety filters or override core agent behavior.
Audit Metadata