debank
Pass
Audited by Gen Agent Trust Hub on Apr 8, 2026
Risk Level: SAFE
Full Analysis
- [CREDENTIALS_UNSAFE]: Sensitive information such as the DEBANK_API_KEY is securely retrieved from the environment rather than being hardcoded in the source code.
- [DATA_EXFILTRATION]: The skill performs network requests to pro-openapi.debank.com using the framework's internal HTTP client. This is an official domain for the well-known DeBank blockchain data service.
- [COMMAND_EXECUTION]: No instances of shell command execution or subprocess spawning were found; the skill relies solely on Python-based API interactions.
- [REMOTE_CODE_EXECUTION]: No external scripts or packages are downloaded or executed at runtime.
- [SAFE]: All input parameters, including Ethereum addresses and chain identifiers, undergo validation and normalization before being used in API requests.
Audit Metadata