The Agent Skills Directory

[SAFE]: The skill defines clear security boundaries for handling sensitive Binance API credentials. It instructs the agent to mask API keys (showing only first 5 and last 4 characters) and secret keys (showing only the last 5 characters) and emphasizes keeping the location of credential files confidential.
[PROMPT_INJECTION]: Instructions are provided to ensure the agent does not override safety guidelines or disclose secrets. It also implements a confirmation mechanism, requiring the user to explicitly type "CONFIRM" before any trade is executed on the mainnet environment.
[COMMAND_EXECUTION]: While the documentation includes shell-based examples for signing requests and making API calls using openssl and curl, these are standard implementation details. The skill mitigates common injection vectors by mandating RFC 3986 percent-encoding for all user-supplied parameter values.
[NO_CODE]: The skill is entirely composed of Markdown files (SKILL.md, CHANGELOG.md, LICENSE.md, and authentication.md). There are no executable scripts, Python/Node.js packages, or binaries included, which significantly limits the potential for direct system compromise.

derivatives-trading-portfolio-margin