pubfi-walletconnect-transactions
Fail
Audited by Gen Agent Trust Hub on Feb 16, 2026
Risk Level: HIGHEXTERNAL_DOWNLOADSPROMPT_INJECTIONNO_CODE
Full Analysis
- [Indirect Prompt Injection] (HIGH): The skill processes untrusted transaction data to perform high-privilege blockchain state changes. \n
- Ingestion points: The
transactioninput parameter defined inSKILL.md. \n - Boundary markers: Absent; the documentation does not specify delimiters or instructions to ignore embedded commands within the JSON object. \n
- Capability inventory: Capability to sign and broadcast transactions (
eth_sendTransaction), which can transfer assets or interact with arbitrary smart contracts. \n - Sanitization: No sanitization or validation of the
dataortofields is described beyond basic formatting. \n- [Unverifiable Dependencies] (MEDIUM): The project relies on external libraries from public registries without established trust status or version pinning. \n - Evidence: Dependencies include
@walletconnect/sign-client,ethers, andqrcode-terminalfrom unverified sources. \n- [Missing Implementation] (LOW): The source code referenced inpackage.json(src/walletconnect_transactions.ts) is missing from the provided files, preventing a full audit of the actual execution logic.
Recommendations
- AI detected serious security threats
Audit Metadata