Skills
skills/injectivelabs/agent-skills/injective-evm-developer/Gen Agent Trust Hub

injective-evm-developer

Pass

Audited by Gen Agent Trust Hub on Mar 10, 2026

Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
  • [EXTERNAL_DOWNLOADS]: The skill documentation references official Injective Labs GitHub repositories for Solidity interfaces and specialized Foundry binaries.
  • Evidence: SKILL.md references https://github.com/InjectiveLabs/foundry/releases and https://raw.githubusercontent.com/InjectiveLabs/solidity-contracts.
  • [EXTERNAL_DOWNLOADS]: Mentions an optional third-party development toolkit (whackur/solidity-agent-toolkit) for related Solidity activities.
  • Evidence: SKILL.md line 242.
  • [COMMAND_EXECUTION]: Provides instructions for using standard CLI tools like hardhat and npx for contract management and skill setup.
  • Evidence: SKILL.md commands for npx hardhat verify and npx skills add.
  • [PROMPT_INJECTION]: The sample prompt files include scenarios where the user asks the agent to generate a wallet and display a private key; this is for testnet onboarding but involves sensitive data handling patterns.
  • Evidence: sample-prompts.md US-001.
  • [SAFE]: The provided code assets follow security best practices, such as importing OpenZeppelin libraries and using environment variables for sensitive deployment keys.
  • Evidence: hardhat-testnet-config.js uses process.env.PRIVATE_KEY.
Audit Metadata
Risk Level
SAFE
Analyzed
Mar 10, 2026, 02:11 PM