ethereum-development
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFE
Full Analysis
- [Prompt Injection] (SAFE): No instructions attempting to bypass safety filters or override system prompts were identified in any of the analyzed files.
- [Data Exposure & Exfiltration] (SAFE): No hardcoded credentials, API keys, or sensitive file paths (e.g., .ssh, .aws) were found. Network interactions described are limited to standard Ethereum RPC calls (e.g., gas estimation, storage queries) which are consistent with the skill's stated purpose.
- [Remote Code Execution] (SAFE): The skill does not perform remote script execution or utilize dangerous functions like eval() or exec() on untrusted data. The Foundry CLI commands listed (forge, cast) are standard development tools.
- [Indirect Prompt Injection] (LOW): The skill involves ingesting data from external blockchain nodes via RPC methods like
trace_transactionoreth_getLogs. - Ingestion points: External data enters through blockchain RPC responses processed by tools like
viemandcast. - Boundary markers: Not explicitly defined for the output of external CLI tools.
- Capability inventory: The skill uses subprocess calls to
castandforgefor contract interaction and local analysis. - Sanitization: Relies on the underlying libraries (viem) for data parsing; however, the agent should treat natural language strings found in transaction logs or traces as untrusted data.
- [Privilege Escalation & Persistence] (SAFE): No commands for elevating user privileges (sudo) or establishing persistence across sessions (cron, shell profiles) were detected.
Audit Metadata