vip-loan
Pass
Audited by Gen Agent Trust Hub on Mar 20, 2026
Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADSCREDENTIALS_UNSAFE
Full Analysis
- [COMMAND_EXECUTION]: The skill uses shell commands like
curlto interact with API endpoints andopensslto generate required cryptographic signatures (HMAC SHA256, RSA, or Ed25519) for request authentication. - [EXTERNAL_DOWNLOADS]: Performs network operations to the official Binance API host (api.binance.com) to retrieve interest rates, collateral data, and manage loan orders.
- [CREDENTIALS_UNSAFE]: Describes a mechanism for the agent to ingest and manage user-provided Binance API credentials. The skill includes explicit security instructions for the agent to mask these credentials in output and confirm high-stakes transactions on the mainnet.
Audit Metadata