test-rust-cli
Fail
Audited by Gen Agent Trust Hub on Apr 5, 2026
Risk Level: HIGHEXTERNAL_DOWNLOADSREMOTE_CODE_EXECUTIONCOMMAND_EXECUTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill instructions include downloading an installation script from a remote GitHub repository (okx/onchainos-skills).
- [REMOTE_CODE_EXECUTION]: The installation process involves piping a remote script directly into the shell for execution (
curl | sh), which is a technique for running external code on the local system. - [COMMAND_EXECUTION]: The compiled Rust binary (
test-rust-cli) executes theonchainoscommand as a subprocess to retrieve token price information.
Recommendations
- HIGH: Downloads and executes remote code from: https://raw.githubusercontent.com/okx/onchainos-skills/main/install.sh - DO NOT USE without thorough review
Audit Metadata