solidity-nft
Pass
Audited by Gen Agent Trust Hub on Feb 16, 2026
Risk Level: LOWNO_CODE
Full Analysis
- SAFE (LOW): All files are markdown documents providing technical reference and code snippets for educational purposes. No executable code components like Python, JavaScript, or Shell scripts were found.
- NO_CODE (INFO): The skill does not contain any functional logic that an AI agent would execute in its own environment.
- SMART_CONTRACT_SECURITY (INFO): The Solidity code snippets provided as examples contain standard patterns. However, the Auction 'bid' function implements a 'Push' refund strategy (sending ETH to the previous bidder during the transaction). This is a known vector for Denial of Service (DoS) attacks in Ethereum development. Users should follow the 'Pull' pattern suggested in the skill's own security considerations table instead.
Audit Metadata