nansen-holder-analysis
Pass
Audited by Gen Agent Trust Hub on Mar 17, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill installs the 'nansen-cli' Node.js package during the installation phase. This package is an official resource provided by the author 'nansen-ai' for interacting with their data services.
- [COMMAND_EXECUTION]: The skill executes the 'nansen' command-line tool to perform token holder and flow-intelligence queries. These commands are restricted to data retrieval operations from the vendor's API.
- [CREDENTIALS_UNSAFE]: The skill does not contain hardcoded secrets. It correctly requests the 'NANSEN_API_KEY' via the environment configuration, ensuring that sensitive credentials are managed securely by the user.
Audit Metadata