jupiter-vrfd
Pass
Audited by Gen Agent Trust Hub on Apr 17, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill interacts exclusively with official Jupiter infrastructure (
api.jup.ag) and references legitimate project addresses such as the Jupiter Burn Multisig and the JUP token mint. - [SAFE]: Instructions explicitly forbid the agent from requesting private keys or seed phrases from users, and warn against printing sensitive values or secrets in the conversation.
- [SAFE]: The included TypeScript template implements a critical security check that validates the transaction's receiver, token mint, and amount before the signing step, protecting users from potential API-level manipulation or blind signing attacks.
- [SAFE]: Dependencies listed (
@solana/web3.js,bs58) are standard, well-known libraries within the Solana ecosystem for transaction handling and encoding.
Audit Metadata