alchemy
Pass
Audited by Gen Agent Trust Hub on Feb 28, 2026
Risk Level: SAFENO_CODE
Full Analysis
- [SAFE]: The skill is composed strictly of documentation files and contains no executable scripts or code.
- [SAFE]: No sensitive credentials are hardcoded; the documentation uses standard placeholders and the public Alchemy demo key.
- [INDIRECT_PROMPT_INJECTION]: The skill documents an interface for processing blockchain data which acts as a potential injection surface.
- Ingestion points: Data is ingested through various RPC and NFT API methods described in 'references/core-namespace.md' and 'references/features-nft.md'.
- Boundary markers: No specific boundary markers or 'ignore' instructions are provided in the documentation.
- Capability inventory: Capabilities include sending transactions and managing webhooks as described in 'references/features-transact.md' and 'references/features-notify.md'.
- Sanitization: No sanitization logic is present as the skill does not include executable code.
Audit Metadata