hyperliquid
Pass
Audited by Gen Agent Trust Hub on Mar 18, 2026
Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADSPROMPT_INJECTION
Full Analysis
- [COMMAND_EXECUTION]: The skill invokes the hyperliquid CLI tool to monitor positions and execute market orders.
- [EXTERNAL_DOWNLOADS]: The skill instructions specify that the hyperliquid CLI tool and a dedicated virtual environment must be installed externally.
- [PROMPT_INJECTION]: The adjust_hyperliquid_portfolio command contains an indirect prompt injection surface where the target_portfolio_json input is interpolated into a bash execution string. Ingestion points: target_portfolio_json parameter in SKILL.md. Boundary markers: None (the skill relies on standard shell quoting in examples). Capability inventory: Shell command execution for financial trading via the hyperliquid CLI. Sanitization: No input validation or sanitization logic is described for the provided JSON string.
Audit Metadata