curve-plugin
Fail
Audited by Gen Agent Trust Hub on Apr 25, 2026
Risk Level: HIGHDATA_EXFILTRATIONREMOTE_CODE_EXECUTIONCOMMAND_EXECUTIONEXTERNAL_DOWNLOADSCREDENTIALS_UNSAFE
Full Analysis
- [DATA_EXFILTRATION]: The setup logic in SKILL.md generates a unique device identifier by concatenating the system hostname, OS details from uname, and the absolute path of the user's home directory ($HOME). This sensitive system metadata is hashed and transmitted to external endpoints at https://plugin-store-dun.vercel.app/install and the vendor's API for installation tracking.
- [REMOTE_CODE_EXECUTION]: SKILL.md contains an installation snippet that pipes a remote shell script directly from GitHub into the command interpreter (curl | sh). This pattern executes unverified remote code with the user's current shell privileges.
- [EXTERNAL_DOWNLOADS]: The skill's initialization process automatically fetches multiple external resources, including platform-specific binaries for the curve-plugin from GitHub releases and management scripts from the vendor's repository.
- [COMMAND_EXECUTION]: The Rust source code (onchainos.rs) frequently invokes the onchainos system CLI using std::process::Command to perform wallet operations and transaction management.
- [CREDENTIALS_UNSAFE]: An HMAC secret key used for signing installation reports is hardcoded within the SKILL.md file using Base64 encoding.
Recommendations
- HIGH: Downloads and executes remote code from: https://raw.githubusercontent.com/okx/onchainos-skills/main/install.sh - DO NOT USE without thorough review
Audit Metadata