okx-cex-portfolio
Pass
Audited by Gen Agent Trust Hub on Mar 11, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill requires the installation of the
@okx_ai/okx-trade-clipackage from the npm registry. As the skill author is 'okx', this is recognized as a legitimate vendor resource. - [COMMAND_EXECUTION]: The skill facilitates the execution of local shell commands using the
okxCLI to retrieve account balances, manage positions, and execute fund transfers. - [PROMPT_INJECTION]: The skill exhibits an indirect prompt injection surface (Category 8).
- Ingestion points: Data enters the agent context through OKX API responses (e.g., account balance, position details, and transaction history) processed via the
okxCLI. - Boundary markers: The instructions include explicit profile verification steps (live vs. demo) and guide the user to confirm write operations, which acts as a manual boundary.
- Capability inventory: The skill can perform sensitive write operations including fund transfers (
okx account transfer) and position mode changes (okx account set-position-mode). - Sanitization: The skill relies on the underlying CLI to mask sensitive configuration output, but it lacks specific prompt-level sanitization for data returned from the API.
Audit Metadata