uniswap-cca-configurator
Warn
Audited by Gen Agent Trust Hub on Apr 4, 2026
Risk Level: MEDIUMEXTERNAL_DOWNLOADSREMOTE_CODE_EXECUTIONNO_CODE
Full Analysis
- [NO_CODE]: The skill file contains no functional code, scripts, or agent-executable instructions; it is entirely documentation and metadata. The metadata claims authorship by "Uniswap Labs," which contradicts the provided author context of "okx."
- [EXTERNAL_DOWNLOADS]: The skill suggests installing external software from the "@uniswap" NPM scope and references content on GitHub. These represent downloads from external registries and source control platforms.
- [REMOTE_CODE_EXECUTION]: The skill documentation includes an
npxcommand to add external skills, which involves the remote fetching and execution of code at runtime.
Audit Metadata