coinstats-exchange
Pass
Audited by Gen Agent Trust Hub on Mar 10, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill installs the coinstats-cli package from the npm registry, which is a resource provided by the vendor CoinStatsHQ.
- [COMMAND_EXECUTION]: Executes shell commands using the coinstats binary to facilitate exchange synchronization, balance checks, and transaction history retrieval.
- [PROMPT_INJECTION]: Potential indirect prompt injection surface. Ingestion point: the skill reads content from a local file (./exchange-balance.json) during the balance check command. Boundary markers: no delimiters or specific instructions are provided to the agent to ignore embedded commands in the file content. Capability inventory: uses Bash tool execution for sensitive account operations. Sanitization: there is no evidence of validation or filtering for the data ingested from the local JSON file.
Audit Metadata