Skills
skills/starchild-ai-agent/official-skills/trading-strategy/Gen Agent Trust Hub

trading-strategy

Warn

Audited by Gen Agent Trust Hub on Mar 18, 2026

Risk Level: MEDIUMCREDENTIALS_UNSAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTION
Full Analysis
  • [DATA_EXPOSURE_AND_EXFILTRATION]: The skill instructions in SKILL.md explicitly direct the agent to "ask for headers/credentials" if authentication is required to fetch content from external URLs (e.g., Substack or analyst reports). This practice encourages users to provide sensitive authentication data directly to the agent, creating a risk of exposure or potential exfiltration if the agent's logic is manipulated by malicious data.
  • [DYNAMIC_EXECUTION]: The skill implements a workflow where it generates Python monitoring scripts (e.g., monitor.py) and saves them to the workspace. These scripts are then executed automatically. While this supports the skill's primary function of market monitoring, the runtime generation and execution of code increases the risk that malicious logic could be introduced into the system's execution loop.
  • [PERSISTENCE_MECHANISMS]: The skill uses the schedule_task tool to run the generated monitoring scripts at regular intervals (e.g., "every 30 minutes"). This establishes a persistence mechanism where the agent's code can continue to execute actions independently of the active user session.
  • [INDIRECT_PROMPT_INJECTION]: The skill presents a significant attack surface for indirect prompt injection by using web_fetch to process untrusted content from the web.
  • Ingestion points: The agent fetches content from user-provided URLs and paid newsletters in SKILL.md.
  • Boundary markers: There are no instructions defining boundary markers or sanitization procedures for data retrieved via web_fetch.
  • Capability inventory: The agent has the ability to generate scripts, schedule tasks, and access market data APIs.
  • Sanitization: There is no evidence of content validation or sanitization before the external data is used to inform reasoning or the creation of automated scripts.
  • [EXTERNAL_DOWNLOADS]: The skill's reference documentation provides a Python script template that fetches data from well-known services including CoinGecko and Taapi.io to monitor price and technical indicators.
Audit Metadata
Risk Level
MEDIUM
Analyzed
Mar 18, 2026, 07:36 AM