cardano-cli-wallets-operator
Warn
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: MEDIUMCREDENTIALS_UNSAFECOMMAND_EXECUTION
Full Analysis
- [CREDENTIALS_UNSAFE] (MEDIUM): The skill generates and stores .skey files, which are sensitive private signing keys. Although the prompt instructs the agent not to display them, the allowed 'Bash(cat:*)' and 'Read' tools provide the capability to extract these credentials from the filesystem.
- [COMMAND_EXECUTION] (MEDIUM): The skill utilizes high-privilege commands including 'cardano-cli' and 'chmod'. While necessary for the skill's purpose, these tools allow the agent to perform critical cryptographic operations and modify file system permissions.
- [SAFE] (INFO): The skill correctly implements 'chmod 600' on generated keys and uses 'disable-model-invocation: true', ensuring that the agent cannot autonomously execute these sensitive operations without user initiation.
Audit Metadata