Skills
skills/rain1-labs/rain-sdk/rain-trade/Gen Agent Trust Hub

rain-trade

Warn

Audited by Gen Agent Trust Hub on Mar 21, 2026

Risk Level: MEDIUMEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
  • [EXTERNAL_DOWNLOADS]: The skill requires the installation of the @buidlrrr/rain-sdk package from the npm registry, which is an external dependency provided by a third-party source.
  • [COMMAND_EXECUTION]: The documentation provides instructions to install external software using the npm install command.
  • [PROMPT_INJECTION]: The skill contains a surface for indirect prompt injection by processing external market data that could be manipulated by third parties.
  • Ingestion points: Untrusted market data is ingested via rain.getPositions() and rain.getPositionByMarket() in SKILL.md.
  • Boundary markers: The skill lacks explicit boundary markers or instructions to disregard embedded commands in the fetched data.
  • Capability inventory: The skill allows the construction and sending of blockchain transactions through walletClient.sendTransaction().
  • Sanitization: No sanitization or validation logic is present for the data retrieved from external prediction markets.
Audit Metadata
Risk Level
MEDIUM
Analyzed
Mar 21, 2026, 01:49 PM