The Agent Skills Directory

[SAFE]: No malicious patterns or security vulnerabilities were identified in the analyzed files.
[COMMAND_EXECUTION]: The dsl-cli.py and dsl-v5.py scripts utilize subprocess.run to execute mcporter commands. This is the standard and intended method for interacting with the Hyperliquid exchange within the Senpi ecosystem. Arguments are safely handled using JSON serialization to prevent command injection.
[EXTERNAL_DOWNLOADS]: A reference to the official Hyperliquid API (api.hyperliquid.xyz) exists in legacy code (dsl-v4.py) for price fetching. This is a well-known service and is used correctly for its primary function.
[DATA_EXFILTRATION]: Data access is restricted to the position state directory. There is no evidence of unauthorized data collection or transmission to external domains. File operations are limited to managing position metadata.
[CREDENTIALS_UNSAFE]: The skill does not contain hardcoded secrets, API keys, or private keys. It relies on platform-level authentication provided through the mcporter tool.

dsl-dynamic-stop-loss