Skills
skills/okx/onchainos-skills/okx-agentic-wallet/Gen Agent Trust Hub

okx-agentic-wallet

Pass

Audited by Gen Agent Trust Hub on May 20, 2026

Risk Level: SAFEEXTERNAL_DOWNLOADSREMOTE_CODE_EXECUTIONCOMMAND_EXECUTION
Full Analysis
  • [EXTERNAL_DOWNLOADS]: The skill's initialization process in _shared/preflight.md downloads configuration files, installation scripts (install.sh, install.ps1), and integrity checksums from the vendor's official GitHub repository (github.com/okx/onchainos-skills).
  • [REMOTE_CODE_EXECUTION]: The pre-flight logic executes the downloaded shell or PowerShell scripts to install or update the onchainos CLI. This is a standard mechanism for maintaining vendor-provided developer tools.
  • [COMMAND_EXECUTION]: The skill operates by delegating actions to the onchainos CLI tool, passing user-specified parameters like wallet addresses, token symbols, and transaction amounts. It includes explicit instructions to avoid command injection by validating address formats.
  • [SAFE]: The skill implements strong data protection policies, including a strict prohibition on exposing mnemonic phrases or private keys. All sensitive signing operations are conducted within a TEE, and the agent is instructed to never expose sensitive credentials in the conversation logs.
Audit Metadata
Risk Level
SAFE
Analyzed
May 20, 2026, 01:22 AM