polyflup-ops
Warn
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: MEDIUMCREDENTIALS_UNSAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADS
Full Analysis
- [CREDENTIALS_UNSAFE] (MEDIUM): The skill requires a private key variable (
PROXY_PK) for operation. Handling cryptographic keys in an agent context is a significant risk factor for credential exposure. - [COMMAND_EXECUTION] (MEDIUM): The skill executes multiple local scripts and system commands (
uv,docker,npm) to manage a trading bot, granting the agent control over financial operations and local infrastructure. - [EXTERNAL_DOWNLOADS] (LOW): Automated installation of dependencies via
pipandnpmis specified, which introduces a dependency on external package registries without explicit version pinning in the skill body. - [DATA_EXFILTRATION] (LOW): The capability to sync production databases via SSH is mentioned, creating a potential vector for the transfer of sensitive production data into the agent's working environment.
Audit Metadata