Skills
skills/himself65/finance-skills/finance-sentiment/Gen Agent Trust Hub

finance-sentiment

Pass

Audited by Gen Agent Trust Hub on Apr 3, 2026

Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADSPROMPT_INJECTION
Full Analysis
  • [COMMAND_EXECUTION]: The skill uses curl commands to perform API requests to the Adanos Finance platform.
  • [COMMAND_EXECUTION]: A dynamic context injection block (!python3) is used at load time to check for the existence of the ADANOS_API_KEY environment variable.
  • [EXTERNAL_DOWNLOADS]: The skill performs HTTP GET requests to api.adanos.org to retrieve structured sentiment data from Reddit, X.com, news, and Polymarket.
  • [PROMPT_INJECTION]: The skill ingests untrusted ticker symbols and lookback periods from user input (Ingestion points: SKILL.md) and interpolates them into API URLs without explicit sanitization (Sanitization: absent) or boundary markers (Boundary markers: absent). The skill has network access capabilities via curl (Capability inventory: SKILL.md).
Audit Metadata
Risk Level
SAFE
Analyzed
Apr 3, 2026, 06:13 AM