wallet-setup
Pass
Audited by Gen Agent Trust Hub on May 8, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: No malicious patterns or security vulnerabilities were detected in the skill's instructions or metadata.
- [EXTERNAL_DOWNLOADS]: The skill references official @1sat/ wallet packages and the @1sat/cli tool, which are the primary components for the documented functionality.
- [DATA_EXPOSURE]: While the skill involves handling sensitive cryptographic keys, it emphasizes security best practices, such as using hardware-protected storage via @1sat/vault on supported platforms. It documents the use of local storage paths like '
/.myapp/wallet.db' and '/.secure-enclave-vault/'. - [INDIRECT_PROMPT_INJECTION]: The skill has an inherent attack surface for indirect prompt injection as it processes user-provided mnemonics and keys, which is necessary for its primary function.
- Ingestion points: User-supplied private keys, mnemonics, and backup files processed via FileRestoreReader.
- Boundary markers: Standard agent prompt boundaries are assumed; no specific markers are mentioned in the instructions.
- Capability inventory: File system access (SQLite/IndexedDB), network operations (remote storage sync), and hardware-backed secret management (macOS Secure Enclave).
- Sanitization: Relies on internal package logic from @1sat/* for processing cryptographic material and data structures.
Audit Metadata