Skills
skills/agiprolabs/claude-trading-skills/helius-api/Gen Agent Trust Hub

helius-api

Pass

Audited by Gen Agent Trust Hub on Mar 21, 2026

Risk Level: SAFEEXTERNAL_DOWNLOADSDATA_EXFILTRATIONPROMPT_INJECTION
Full Analysis
  • [EXTERNAL_DOWNLOADS]: Fetches and installs standard Python dependencies httpx and python-dotenv from the official Python Package Index (PyPI) to handle network requests and environment configuration.
  • [DATA_EXFILTRATION]: Communicates with official Helius API endpoints (mainnet.helius-rpc.com and api-mainnet.helius-rpc.com) to retrieve Solana blockchain data. The skill correctly manages the API key via environment variables rather than hardcoding credentials.
  • [PROMPT_INJECTION]: The skill exhibits an indirect prompt injection surface by retrieving and displaying unvalidated content from the Solana blockchain, such as token descriptions and transaction metadata.
  • Ingestion points: scripts/token_lookup.py (retrieving token metadata via the DAS API) and scripts/wallet_analysis.py (retrieving transaction descriptions via the Enhanced Transactions API).
  • Boundary markers: No specific delimiters or "ignore instructions" warnings are applied to the displayed blockchain content.
  • Capability inventory: The scripts are limited to fetching data via httpx and printing to the console; no dangerous capabilities such as file system modifications, arbitrary command execution, or system-level access are present.
  • Sanitization: Data retrieved from the blockchain is printed directly to stdout without sanitization or HTML/markdown escaping.
Audit Metadata
Risk Level
SAFE
Analyzed
Mar 21, 2026, 02:35 PM
Security Audit — agent-trust-hub — helius-api