walletconnect-pay
Pass
Audited by Gen Agent Trust Hub on Mar 3, 2026
Risk Level: SAFECOMMAND_EXECUTIONCREDENTIALS_UNSAFEEXTERNAL_DOWNLOADSPROMPT_INJECTION
Full Analysis
- [COMMAND_EXECUTION]: Operates the
walletconnect-payCLI to manage payment flows, check status, and perform checkouts. - [CREDENTIALS_UNSAFE]: Utilizes environment variables for API keys and partner credentials, using standard placeholders for configuration in the documentation.
- [EXTERNAL_DOWNLOADS]: References building the
@walletconnect/pay-clipackage from the vendor's source code using npm. - [PROMPT_INJECTION]: Indirect prompt injection surface identified.
- Ingestion points: Output from the
walletconnect-pay statuscommand, which may contain external data like merchant names or payment descriptions. - Boundary markers: Absent; the instructions do not provide delimiters to separate CLI output from the agent's internal instruction set.
- Capability inventory: Subprocess execution of the payment CLI and handling of sensitive transaction signings.
- Sanitization: No explicit sanitization or validation of the CLI output is described before it is displayed or used.
Audit Metadata