Skills
skills/circlefin/skills/use-gateway/Gen Agent Trust Hub

use-gateway

Fail

Audited by Gen Agent Trust Hub on Apr 23, 2026

Risk Level: CRITICALEXTERNAL_DOWNLOADSDATA_EXFILTRATION
Full Analysis
  • [EXTERNAL_DOWNLOADS]: Communicates with Circle's official Gateway API endpoints (gateway-api.circle.com) to submit burn intents and retrieve cryptographic attestations for cross-chain minting.
  • [EXTERNAL_DOWNLOADS]: Interacts with various public blockchain RPC nodes (including Alchemy, Hyperliquid, Sonic, and Publicnode) to query on-chain data and broadcast transactions.
  • [DATA_EXFILTRATION]: Accesses the CIRCLE_API_KEY and CIRCLE_ENTITY_SECRET from environment variables to authenticate with the Circle Developer-Controlled Wallets SDK. This follows the skill's own documented security rules to avoid hardcoding credentials.
  • [EXTERNAL_DOWNLOADS]: References the official Circle developer documentation (developers.circle.com) for supplemental implementation details.
Recommendations
  • CRITICAL: 1 infected file(s) detected - DO NOT USE
  • Contains 1 malicious URL(s) - DO NOT USE
Audit Metadata
Risk Level
CRITICAL
Analyzed
Apr 23, 2026, 10:00 PM