t2000-pay
Pass
Audited by Gen Agent Trust Hub on Feb 28, 2026
Risk Level: SAFE
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill references the @t2000/cli package, which is the official command-line tool for the t2000 wallet system. This is an expected dependency for the skill's functionality.
- [COMMAND_EXECUTION]: It uses the t2000 pay command to automate HTTP requests and blockchain transactions. This aligns with the primary purpose of paying for protected resources.
- [PROMPT_INJECTION]: The skill processes responses from external APIs, creating an indirect prompt injection surface. Ingestion point: HTTP response body from the target URL. Boundary markers: None. Capability inventory: Network communication and Sui blockchain payment signing. Sanitization: None. This surface is standard for any tool that retrieves remote data.
Audit Metadata