nansen-holder-quality
Pass
Audited by Gen Agent Trust Hub on Mar 5, 2026
Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [SAFE]: A comprehensive analysis of the nansen-holder-quality skill confirms it is safe. No malicious code, obfuscated payloads, or unauthorized data exfiltration attempts were identified. All external resource references trace back to the vendor's own CLI tools.
- [COMMAND_EXECUTION]: The skill uses bash code blocks to demonstrate the execution of 'nansen research' commands. These commands utilize environment variables ($TOKEN, $CHAIN) for customization, which is standard practice for CLI-based research skills and aligns with the primary stated purpose.
- [PROMPT_INJECTION]: The skill presents an indirect prompt injection surface as it processes external inputs into shell commands. 1. Ingestion points: Variable assignments in SKILL.md bash blocks. 2. Boundary markers: Absent. 3. Capability inventory: Subprocess shell execution of the 'nansen' CLI tool. 4. Sanitization: Absent in the provided template. While this surface exists, it is rated as SAFE as it is necessary for the skill's primary function and no malicious exploitation patterns are present.
Audit Metadata