Skills
skills/nansen-ai/nansen-cli/nansen-trade/Gen Agent Trust Hub

nansen-trade

Pass

Audited by Gen Agent Trust Hub on Mar 9, 2026

Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONDATA_EXFILTRATIONPROMPT_INJECTION
Full Analysis
  • [EXTERNAL_DOWNLOADS]: The skill installs the nansen-cli package from the Node.js registry. This is an official vendor resource provided by nansen-ai.\n- [COMMAND_EXECUTION]: The skill uses Bash to interact with the nansen command-line tool for generating quotes and executing trades.\n- [DATA_EXFILTRATION]: The skill accesses the file ~/.nansen/.env to retrieve the NANSEN_WALLET_PASSWORD. This sensitive credential is used locally to sign blockchain transactions and is part of the intended functionality of the vendor's tool.\n- [PROMPT_INJECTION]: The trade parameters such as tokens and amounts represent an indirect prompt injection surface if they are sourced from untrusted external data.\n
  • Ingestion points: Command-line flags --from, --to, and --amount in SKILL.md.\n
  • Boundary markers: None.\n
  • Capability inventory: Irreversible on-chain trades via nansen trade execute.\n
  • Sanitization: No explicit validation or sanitization of inputs mentioned.
Audit Metadata
Risk Level
SAFE
Analyzed
Mar 9, 2026, 04:30 PM