hardhat
Pass
Audited by Gen Agent Trust Hub on Feb 28, 2026
Risk Level: SAFE
Full Analysis
- [EXTERNAL_DOWNLOADS]: The documentation describes the installation of development dependencies via npm and references the forge-std library hosted on GitHub (foundry-rs/forge-std). These resources originate from well-known community sources and organizations within the Ethereum ecosystem.
- [COMMAND_EXECUTION]: The skill provides usage instructions for the Hardhat Runner, which involves executing CLI tasks such as compile, test, and ignition deploy. These are standard operations for building, testing, and managing smart contract lifecycles.
- [REMOTE_CODE_EXECUTION]: References the ffi (Foreign Function Interface) feature in Solidity tests, which allows for the execution of external shell scripts during the testing phase. This is an established, advanced capability of the Hardhat environment used for complex simulation requirements.
- [CREDENTIALS_UNSAFE]: Guidelines are provided for managing sensitive data, such as private keys and API keys for RPC providers and explorers. The documentation explicitly promotes security best practices, such as using the hardhat-keystore plugin and configuration variables, to prevent the hardcoding of secrets.
Audit Metadata