Skills
skills/holon-run/uxc/okx-mcp-skill/Snyk

okx-mcp-skill

Fail

Audited by Snyk on Mar 9, 2026

Risk Level: HIGH
Full Analysis

HIGH W007: Insecure credential handling detected in skill instructions.

  • Insecure credential handling detected (high risk: 0.90). The prompt includes an actual API key string and shows commands that embed secrets verbatim (e.g., --secret d573a84c-8e79-4a35-b0c6-427e9ad2478d and literal --secret usage), which encourages the LLM to handle and output secrets directly, creating exfiltration risk.

HIGH W008: Secret detected in skill content (API keys, tokens, passwords).

  • Secret detected (high risk: 1.00). I scanned the full prompt for literal high-entropy credentials. The Quick Trial Key value d573a84c-8e79-4a35-b0c6-427e9ad2478d appears directly as a concrete API key and is used in an example command as a literal secret (--secret ...). Even though the doc calls it a "shared demo key" / "read-only trial" value, it is a real, usable credential present in the text and therefore meets the "actual API key" criterion.

Items I am intentionally ignoring:

  • Environment variable names and credential placeholders (e.g., OKX_ACCESS_KEY, YOUR_API_KEY, --secret-env references) — these are names/placeholders, not secret values.
  • Public blockchain addresses mentioned for Solana (So11111111111111111111111111111111111111112 and 11111111111111111111111111111111) — these are public addresses, not secret credentials.
  • Other example or CLI usage text that does not include a literal complex credential.

Conclusion: the Quick Trial Key is a literal API key present in the document and should be treated as a secret for scanning/remediation purposes, even if it is documented as a public demo key.

MEDIUM W009: Direct money access capability detected (payment gateways, crypto, banking).

  • Direct money access detected (high risk: 1.00). The skill explicitly exposes crypto execution operations: dex-okx-dex-approve-transaction, dex-okx-dex-swap, and dex-okx-dex-solana-swap-instruction, alongside wallet balance queries and DEX quote/swap flows. These are specific blockchain transaction and swap functions (signing/sending DEX trades), not generic tooling. The presence of these explicit swap/approve operations (and auth for real calls) constitutes direct financial execution capability.
Audit Metadata
Risk Level
HIGH
Analyzed
Mar 9, 2026, 05:42 AM