Identify vault protocol
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [PROMPT_INJECTION] (LOW): Indirect Prompt Injection vulnerability surface detected due to untrusted data processing.
- Ingestion points: The skill reads smart contract source code from explorers, GitHub search results, web pages, Twitter content, and PDF/web audit reports.
- Boundary markers: Absent. The instructions do not specify delimiters or warnings to ignore instructions embedded in the analyzed contract source or search results.
- Capability inventory: The agent has file-write capabilities (writing to
docs/protocol-research/) and network search/read capabilities. - Sanitization: Absent. There is no logic to sanitize or filter the content retrieved from external sources before processing.
- [EXTERNAL_DOWNLOADS] (SAFE): The skill references the
DefiLlama/DefiLlama-Adaptersrepository. This is used solely as a data source for research and does not involve downloading or executing untrusted code.
Audit Metadata