htx-spot-account
Pass
Audited by Gen Agent Trust Hub on May 2, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: No security issues were detected. The skill instructions and supporting files align with the stated purpose of managing cryptocurrency exchange accounts.
- [COMMAND_EXECUTION]: The skill interacts with the local environment by executing
htx-clicommands. These operations are limited to account queries and internal transfers within the HTX exchange, which are well-documented and consistent with the skill's utility. - [CREDENTIALS_UNSAFE]: The skill follows security best practices for credential management. It instructs the user to configure API keys via the external
htx-clitool, which stores them in a local configuration file (~/.config/htx-cli/config.toml) rather than passing them as command-line arguments or exposing them in the agent's context. - [SAFE]: The installation script (
bin/install.js) performs standard file system operations to copy metadata and reference files to a local directory. It does not perform unauthorized network connections or execute arbitrary code from remote sources.
Audit Metadata