spot

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 1.00). The prompt asks the agent to accept plaintext API key/secret from the user and to construct signed authenticated requests (including AccessKeyId and a Signature computed with the secret), which requires the LLM to handle and potentially output secret values verbatim.

MEDIUM W009: Direct money access capability detected (payment gateways, crypto, banking).

• Direct money access detected (high risk: 1.00). The skill is explicitly a spot trading integration for HTX (Huobi) with authenticated endpoints that allow placing orders (/v1/order/orders/place, /v1/order/batch-orders), cancelling orders, querying balances and accounts, and includes API key/secret handling and HMAC signing instructions. These are specific tools to execute market orders and manage trading accounts (i.e., move funds/execute trades), not generic utilities. Therefore it grants direct financial execution capability.