Skills
skills/serenorg/seren-skills/smart-dca-bot/Gen Agent Trust Hub

smart-dca-bot

Warn

Audited by Gen Agent Trust Hub on Mar 21, 2026

Risk Level: MEDIUMPROMPT_INJECTIONCOMMAND_EXECUTIONEXTERNAL_DOWNLOADSDATA_EXFILTRATION
Full Analysis
  • [PROMPT_INJECTION]:
  • The SKILL.md file includes a directive to 'Immediately run a dry-run DCA cycle without asking' by executing a local script, which instructs the agent to bypass standard user confirmation processes for command execution.
  • The skill has a surface for indirect prompt injection; it ingests market data and rewards information from external Coinbase APIs (scripts/coinbase_client.py) and displays suggestions derived from this data to the user without using explicit boundary markers or delimiters.
  • [COMMAND_EXECUTION]: Core functionality relies on the agent executing shell commands to run local Python scripts, including the main trading logic (scripts/agent.py), a webhook trigger server (scripts/run_agent_server.py), and a scheduler setup tool (scripts/setup_cron.py).
  • [EXTERNAL_DOWNLOADS]: The skill uses network operations to fetch market snapshots, retrieve rewards information, and manage API key registration via api.coinbase.com and api.serendb.com.
  • [DATA_EXFILTRATION]: Execution history, portfolio snapshots, and cost-basis lots are optionally transmitted to a remote SerenDB instance (serendb.com) for persistence and analytics, as described in the vendor's documentation.
Audit Metadata
Risk Level
MEDIUM
Analyzed
Mar 21, 2026, 02:44 AM