bite-dev
Warn
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: MEDIUMEXTERNAL_DOWNLOADSPROMPT_INJECTION
Full Analysis
- EXTERNAL_DOWNLOADS (MEDIUM): The skill instructs users to install and reference code from the @skalenetwork organization and an individual user account (thegreataxios). These sources are not part of the predefined trusted list. Evidence: npm install @skalenetwork/bite in rules/bite-sdk-usage.md and forge install skalenetwork/bite-solidity in rules/bite-solidity-helpers.md.
- PROMPT_INJECTION (LOW): (Indirect) The skill processes untrusted external data via blockchain callbacks. Ingestion points: onDecrypt function in rules/bite-conditional-transactions.md. Boundary markers: Absent for the payload data. Capability inventory: Solidity contract logic execution. Sanitization: Explicit sender validation (msg.sender == BITE.SUBMIT_CTX_ADDRESS) is implemented in provided examples to prevent unauthorized triggers.
- DATA_EXFILTRATION (SAFE): The skill focus is on privacy and encryption; no patterns for exfiltration of local credentials or sensitive files were identified.
- COMMAND_EXECUTION (SAFE): Documented shell commands are restricted to standard package managers (npm, forge) used for their intended development purposes.
Audit Metadata