The Agent Skills Directory

[EXTERNAL_DOWNLOADS]: The bootstrap-env.sh script downloads the caw CLI tool and cobo-tss-node binary from official vendor subdomains (download.agenticwallet.cobo.com and download.tss.cobo.com). These downloads are verified using SHA-256 checksums.
[COMMAND_EXECUTION]: The skill executes shell commands via the caw CLI to perform on-chain operations and manages local Python and TypeScript scripts within the ./scripts/ directory for complex tasks.
[DATA_EXFILTRATION]: While the skill manages cryptocurrency assets and API credentials, it incorporates strict protocols and user approval gates to prevent unauthorized data movement or exposure to external sources.
[PROMPT_INJECTION]: The skill implements a robust security framework, including a mandatory security.md reference, to identify and reject malicious instructions embedded in external content like webhooks or documents.
[REMOTE_CODE_EXECUTION]: The skill downloads its core operational tools from vendor-controlled release channels and allows the agent to update itself using the npx skills update command when prompted by the service.

cobo-agentic-wallet-sandbox