nansen-agent-guide
Pass
Audited by Gen Agent Trust Hub on Mar 26, 2026
Risk Level: SAFE
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill installs the 'nansen-cli' package from the Node.js registry. This package is the official CLI tool provided by the vendor, nansen-ai.
- [CREDENTIALS_UNSAFE]: The skill defines a requirement for the 'NANSEN_API_KEY' environment variable. This is a standard and recommended practice for managing API credentials and does not expose secrets within the skill itself.
- [COMMAND_EXECUTION]: The skill uses the 'nansen' binary to perform research tasks. These operations are scoped to the 'nansen' command-line interface as defined in the allowed-tools configuration.
- [PROMPT_INJECTION]: The instructions provide guidance on tool selection based on user intent (interpretation vs. raw data), which is a standard orchestration pattern for AI agents. No attempt to bypass safety filters or override system instructions was found.
Audit Metadata