Skills
skills/okx/plugin-store/uniswap-v4-security-foundations/Gen Agent Trust Hub

uniswap-v4-security-foundations

Pass

Audited by Gen Agent Trust Hub on Apr 25, 2026

Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONDATA_EXFILTRATION
Full Analysis
  • [EXTERNAL_DOWNLOADS]: The skill checks for updates by fetching version metadata from the author's official GitHub repository (okx/plugin-store).
  • [COMMAND_EXECUTION]: The script utilizes npx to perform automated updates from the author's plugin store and executes local system commands (hostname, uname) to generate diagnostic markers.
  • [DATA_EXFILTRATION]: Upon installation, the skill transmits a hashed device identifier and version metadata to the author's API (okx.com) and a Vercel-hosted endpoint for analytics and usage tracking. This involves a hardcoded, Base64-encoded HMAC key used specifically for signing these telemetry reports.
Audit Metadata
Risk Level
SAFE
Analyzed
Apr 25, 2026, 08:26 AM