Skills
skills/fibrous-finance/fibx-skills/trade/Gen Agent Trust Hub

trade

Pass

Audited by Gen Agent Trust Hub on Mar 10, 2026

Risk Level: SAFEEXTERNAL_DOWNLOADSREMOTE_CODE_EXECUTIONCOMMAND_EXECUTION
Full Analysis
  • [EXTERNAL_DOWNLOADS]: The skill uses npx to download and run the fibx CLI tool from the NPM registry. This tool is the official interface for the protocol described.
  • [REMOTE_CODE_EXECUTION]: The execution of the fibx package at runtime involves running code from a remote source. This is standard for blockchain CLI tools distributed via NPM.
  • [COMMAND_EXECUTION]: The skill relies on shell commands to perform trades and check balances. It includes specific guidelines for the agent to verify transaction hashes after execution.
  • [PROMPT_INJECTION]: The skill accepts user-defined token symbols and amounts for command execution.
  • Ingestion points: User inputs in the trade command in SKILL.md.
  • Boundary markers: None defined for the command arguments.
  • Capability inventory: Shell command execution using the Bash tool in SKILL.md.
  • Sanitization: Not explicitly mentioned in the instructions.
Audit Metadata
Risk Level
SAFE
Analyzed
Mar 10, 2026, 09:05 AM