analyze-gas-optimization
Pass
Audited by Gen Agent Trust Hub on Mar 19, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill serves as a reference guide for developers to identify and remediate expensive operations in Move contracts. It includes legitimate code examples and measurement techniques using standard development tools.
- [EXTERNAL_DOWNLOADS]: The skill references documentation and source code from official Aptos Labs GitHub repositories for the gas schedule and Move VM implementation. These references are used for technical documentation and do not involve untrusted remote code execution.
- [DATA_EXFILTRATION]: The skill includes explicit safety guidelines for the agent, instructing it to never access sensitive files such as
.envor~/.aptos/config.yamlwhich may contain private keys. - [INDIRECT_PROMPT_INJECTION]: As the skill is designed to analyze external Move source code, it possesses an ingestion surface for untrusted data. However, the skill's primary output is a gas optimization report and it lacks capabilities to perform sensitive operations (network, file writes, or command execution) based on the content of the analyzed files.
- Ingestion points: Move contract source code provided by the user.
- Boundary markers: Not explicitly defined in the provided text.
- Capability inventory: None detected; the skill generates analysis and suggestions.
- Sanitization: Not applicable as the skill does not execute code from the input.
Audit Metadata