Skills
skills/nansen-ai/nansen-cli/nansen-web-fetcher/Gen Agent Trust Hub

nansen-web-fetcher

Pass

Audited by Gen Agent Trust Hub on Mar 17, 2026

Risk Level: SAFE
Full Analysis
  • [EXTERNAL_DOWNLOADS]: The skill installs the nansen-cli Node.js package from the official registry. This package is provided by the skill author, nansen-ai.
  • [EXTERNAL_DOWNLOADS]: The skill is designed to fetch content from external URLs using the nansen web fetch command. This is the primary function of the skill.
  • [CREDENTIALS_UNSAFE]: The skill requires a NANSEN_API_KEY environment variable for authentication with the Nansen API.
  • [COMMAND_EXECUTION]: The skill uses the Bash(nansen:*) tool to execute commands through the nansen CLI binary.
  • [PROMPT_INJECTION]: As a tool that processes content from external websites, there is an inherent risk of indirect prompt injection where malicious instructions embedded in a fetched webpage could attempt to influence the AI's response.
  • Ingestion points: URLs passed to the nansen web fetch command.
  • Boundary markers: Not explicitly defined in the CLI usage documentation.
  • Capability inventory: The skill can execute nansen CLI commands and perform network fetches.
  • Sanitization: Content processing is handled by the Nansen API's Gemini implementation.
Audit Metadata
Risk Level
SAFE
Analyzed
Mar 17, 2026, 06:44 AM