bingx-copytrade-swap
Pass
Audited by Gen Agent Trust Hub on Mar 12, 2026
Risk Level: SAFE
Full Analysis
- [DATA_EXFILTRATION]: The skill performs network requests to official BingX domains (bingx.com, bingx.pro) to transmit trading instructions and retrieve account data. This behavior is the intended purpose of the skill and utilizes the legitimate vendor's infrastructure.\n- [PROMPT_INJECTION]: Indirect Prompt Injection surface analysis:\n
- Ingestion points: API responses containing order lists and profit data are ingested from BingX servers (SKILL.md, api-reference.md).\n
- Boundary markers: Explicit 'CONFIRM' requirements are established for write operations on production accounts, providing a manual verification step to mitigate automated execution risk.\n
- Capability inventory: The skill possesses the capability to close trading positions, set take-profit/stop-loss levels, and update commission rates (SKILL.md).\n
- Sanitization: Data is received and processed as structured JSON without explicit verification of content before agent consumption.
Audit Metadata