smart-money-signal-copy-trade
Pass
Audited by Gen Agent Trust Hub on Apr 9, 2026
Risk Level: SAFE
Full Analysis
- [COMMAND_EXECUTION]: The bot frequently invokes the
onchainosCLI usingsubprocess.runto perform market analysis and execute trades. These commands are constructed using argument lists, which is a secure practice to prevent shell injection. - [SAFE]: Operates a local HTTP server on
127.0.0.1:3248to serve a web dashboard. This allows the user to monitor positions and activity feed in real-time without exposing data to the public internet. - [SAFE]: Manages local state persistence through
positions.jsonandsignal_trades.json. The bot uses file locking and atomic write operations to ensure data integrity during concurrent monitoring and trading cycles. - [SAFE]: Includes a robust risk assessment module (
risk_check.py) that performs multi-level security scans for potential token scams, honeypots, and malicious developer activity before and after executing trades.
Audit Metadata