near-smart-contracts
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFE
Full Analysis
- [Prompt Injection] (SAFE): No instructions found that attempt to override agent behavior or bypass safety filters. The instructions are purely technical guidance for smart contract development.
- [Data Exposure & Exfiltration] (SAFE): No hardcoded credentials or sensitive file paths were detected. The skill uses standard NEAR Protocol documentation and repository links.
- [Obfuscation] (SAFE): No Base64, zero-width characters, or other encoding techniques were used to hide malicious content.
- [Unverifiable Dependencies] (SAFE): Mentions standard, trusted libraries such as
near-sdk,near-workspaces,serde_json, andtokio. These are industry-standard tools for the NEAR ecosystem. - [Indirect Prompt Injection] (LOW): The skill instructs the agent to process user-provided Rust code for security audits. While this involves processing untrusted data, the skill itself provides defensive guidelines (boundary markers and validation logic) to identify vulnerabilities, which is the intended safe behavior.
Audit Metadata