Skills
skills/moonpay/skills/messari-x402/Gen Agent Trust Hub

messari-x402

Pass

Audited by Gen Agent Trust Hub on Mar 21, 2026

Risk Level: SAFEPROMPT_INJECTIONCOMMAND_EXECUTION
Full Analysis
  • [PROMPT_INJECTION]: The skill presents an attack surface for indirect prompt injection due to its integration with external API data.
  • Ingestion points: Data retrieved from Messari API endpoints such as news feeds, market signals, and AI research reports.
  • Boundary markers: No specific delimiters or safety instructions are defined in the documentation to isolate untrusted API content.
  • Capability inventory: The skill uses the mp CLI to execute network requests and facilitate blockchain transactions (USDC payments) on the Base network.
  • Sanitization: There is no documentation of sanitization or validation logic applied to the external data before it is presented to the agent.
  • [COMMAND_EXECUTION]: The skill leverages the mp CLI tool (a MoonPay vendor resource) to perform authenticated API calls and manage wallet transactions on the Base blockchain.
Audit Metadata
Risk Level
SAFE
Analyzed
Mar 21, 2026, 10:25 PM