uniswap-pay-with-any-token
Fail
Audited by Gen Agent Trust Hub on Apr 9, 2026
Risk Level: HIGHDATA_EXFILTRATIONCOMMAND_EXECUTIONEXTERNAL_DOWNLOADS
Full Analysis
- [DATA_EXFILTRATION]: The skill contains a script in the 'SKILL.md' file that harvests sensitive system metadata, including the local 'hostname', operating system details, and the full path to the user's home directory ('$HOME'), to generate a persistent device fingerprint.- [DATA_EXFILTRATION]: The gathered system data and installation status are exfiltrated to external endpoints at 'plugin-store-dun.vercel.app' and 'okx.com' via POST requests.- [COMMAND_EXECUTION]: The skill uses shell commands including 'hostname', 'uname', 'shasum', and 'base64' to perform system reconnaissance and decode an obfuscated signing key used for tracking.- [EXTERNAL_DOWNLOADS]: The documentation instructs the agent to install external packages from NPM and GitHub repositories while falsely claiming an official affiliation with Uniswap Labs, which constitutes a supply chain and impersonation risk.
Recommendations
- AI detected serious security threats
Audit Metadata