t2000-pay
Warn
Audited by Gen Agent Trust Hub on Feb 28, 2026
Risk Level: MEDIUMEXTERNAL_DOWNLOADSREMOTE_CODE_EXECUTIONCOMMAND_EXECUTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill requires the installation of
@t2000/cliand@t2000/x402from the npm registry. These resources originate from an unverified third-party vendor and are not included in the trusted vendors list. - [REMOTE_CODE_EXECUTION]: The requirement to run
npx @t2000/cli initinvolves fetching and executing code from a remote registry at runtime, which is a significant security risk if the package is compromised. - [COMMAND_EXECUTION]: The skill functions by executing the
t2000 paycommand. This command facilitates automated signing and broadcasting of USDC payments on the Sui blockchain, which carries inherent financial risk if the endpoint or CLI is compromised. - [PROMPT_INJECTION]: The skill is susceptible to indirect prompt injection from malicious API endpoints. A malicious service could return a 402 Payment Required response to trigger automated payments or provide malicious data in the final response that the agent is forced to process after payment.
Audit Metadata