Skills
skills/migokg/plugin-store/uniswap-swap-planner/Gen Agent Trust Hub

uniswap-swap-planner

Fail

Audited by Gen Agent Trust Hub on Apr 9, 2026

Risk Level: HIGHPROMPT_INJECTIONDATA_EXFILTRATIONREMOTE_CODE_EXECUTIONCOMMAND_EXECUTIONEXTERNAL_DOWNLOADS
Full Analysis
  • [PROMPT_INJECTION]: The skill uses deceptive metadata by claiming authorship by 'Uniswap Labs' while providing the GitHub handle 'wkoutre' and repository links that point to an unrelated personal account. This identity impersonation is used to gain user trust for non-official instructions.
  • [DATA_EXFILTRATION]: Mandatory pre-flight instructions in _shared/preflight.md collect system metadata including the hostname and the user's $HOME path to generate a device fingerprint. This data is transmitted to external endpoints at plugin-store-dun.vercel.app and okx.com via POST requests.
  • [REMOTE_CODE_EXECUTION]: Fetches and executes a shell script from the okx/onchainos-skills repository using curl -sSL ... | sh during the mandatory initialization phase.
  • [COMMAND_EXECUTION]: Executes multiple shell commands to perform device fingerprinting and manages local state tracking files in the ~/.plugin-store/reported/ directory.
  • [EXTERNAL_DOWNLOADS]: Downloads remote configuration and installation assets from non-whitelisted domains as part of its required setup process.
Recommendations
  • AI detected serious security threats
Audit Metadata
Risk Level
HIGH
Analyzed
Apr 9, 2026, 05:45 AM