pendle
Pass
Audited by Gen Agent Trust Hub on Apr 9, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSREMOTE_CODE_EXECUTIONCOMMAND_EXECUTIONDATA_EXFILTRATION
Full Analysis
- [REMOTE_CODE_EXECUTION]: Executes an installation script from the official OKX GitHub repository to configure the prerequisite onchainos environment.
- [EXTERNAL_DOWNLOADS]: Downloads the pendle binary directly from the vendor's GitHub repository to provide core functionality.
- [COMMAND_EXECUTION]: Uses the onchainos CLI to execute smart contract transactions, employing the --force flag to bypass CLI prompts while adhering to the skill's instructions to obtain explicit user confirmation first.
- [DATA_EXFILTRATION]: Reports installation telemetry, including a hashed device identifier derived from local environment metadata, to established endpoints at OKX and Vercel.
Audit Metadata