dojo-indexer
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFE
Full Analysis
- [COMMAND_EXECUTION] (SAFE): The skill utilizes the
Bashtool to execute legitimate CLI commands such astorii,sqlite3, andslot. These are standard tools within the Dojo/Starknet development environment. - [EXTERNAL_DOWNLOADS] (SAFE): The skill references standard Node.js packages (
@dojoengine/torii-client,@apollo/client) and theslotdeployment tool. It does not perform any unverified remote script execution or piped downloads. - [DATA_EXFILTRATION] (SAFE): Network communication is limited to local services (
localhost:8080) or user-defined RPC endpoints. No sensitive file access or suspicious data exfiltration patterns were detected. - [CREDENTIALS_UNSAFE] (SAFE): No hardcoded API keys, tokens, or private keys are present. The skill correctly uses placeholders like
<WORLD_ADDRESS>and<RPC_URL>for user-provided configuration.
Audit Metadata