coinank-openapi
Pass
Audited by Gen Agent Trust Hub on Mar 12, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill implements a secure workflow for accessing market data from the authorized vendor domain open-api.coinank.com. It follows best practices by using an environment variable (COINANK_API_KEY) for authentication instead of hardcoded secrets.
- [SAFE]: The skill's security manifest in SKILL.md limits file system access to documentation and OpenAPI definitions, and restricts network requests to authorized endpoints.
- [SAFE]: No obfuscation, data exfiltration, or unauthorized command execution patterns were found. The use of curl is strictly for data retrieval from the specified vendor API.
Audit Metadata