quicknode-skill
Fail
Audited by Gen Agent Trust Hub on Apr 3, 2026
Risk Level: CRITICAL
Full Analysis
- [SAFE]: The skill serves as a high-quality reference guide for Quicknode's blockchain services (RPC, Streams, IPFS, SQL Explorer, etc.). Analysis of the instructions and scripts shows that the skill interacts exclusively with the vendor's official domains and technology stacks.
- [SAFE]: Data security is maintained by instructing users to store sensitive credentials like API keys and private keys in environment variables (e.g.,
QUICKNODE_RPC_URL,QUICKNODE_API_KEY,PRIVATE_KEY). No hardcoded secrets were detected in the provided files. - [SAFE]: The skill uses legitimate, well-known libraries and protocols (EIP-712, SIWX, IETF Payment Authentication) for specialized tasks such as pay-per-request RPC and streaming data. These implementations are consistent with the documented purpose of the infrastructure.
- [SAFE]: The automated security alerts regarding IPFS gateway URLs (
YOUR_GATEWAY.quicknode-ipfs.com) are templates for user-specific gateways on the Quicknode platform. These are standard service references and do not represent malicious intent within the context of this developer skill.
Recommendations
- Contains 3 malicious URL(s) - DO NOT USE
Audit Metadata