use-typescript-sdk
Pass
Audited by Gen Agent Trust Hub on Mar 4, 2026
Risk Level: SAFE
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill recommends installing official packages from the Aptos Labs organization (
@aptos-labs/ts-sdkand@aptos-labs/wallet-adapter-react) via NPM. These are well-known, trusted libraries for the Aptos ecosystem. - [DATA_EXPOSURE]: The skill includes explicit security rules (Rules 10-13) that instruct users to never hardcode, expose, or store private keys in browser-accessible environment variables. It demonstrates the correct use of environment variables (e.g.,
VITE_APP_NETWORK) for public configuration. - [COMMAND_EXECUTION]: The only shell commands mentioned are standard package installation commands (
npm install) for official dependencies. - [PROMPT_INJECTION]: No instructions were found that attempt to override agent behavior, bypass safety filters, or extract system prompts. The language is purely instructional and focused on SDK usage.
- [SAFE]: The code examples provided are standard implementations for blockchain interactions, including transaction building, signing, submission, and querying view functions. No obfuscation, persistence mechanisms, or dynamic execution patterns were detected.
Audit Metadata