Skills
skills/tyler-tsai/lista-skills-personal/lista-report/Gen Agent Trust Hub

lista-report

Pass

Audited by Gen Agent Trust Hub on Mar 10, 2026

Risk Level: SAFE
Full Analysis
  • [COMMAND_EXECUTION]: Runs a local script (skills/scripts/moolah.js) to fetch wallet positions and market parameters.
  • [EXTERNAL_DOWNLOADS]: Queries the official Lista API (api.lista.org) to obtain market configurations and token prices.
  • [COMMAND_EXECUTION]: Uses python3 to parse and extract data from the API responses.
  • [PROMPT_INJECTION]: Ingestion points: Wallet addresses from user input and position data from api.lista.org. Boundary markers: Absent. Capability inventory: Execution of node and python commands. Sanitization: Basic whitespace stripping and deduplication of addresses. The skill processes structured data for report generation, presenting a low surface for indirect prompt injection.
Audit Metadata
Risk Level
SAFE
Analyzed
Mar 10, 2026, 04:49 AM