veil
Pass
Audited by Gen Agent Trust Hub on Apr 11, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONDATA_EXFILTRATIONCREDENTIALS_UNSAFE
Full Analysis
- [EXTERNAL_DOWNLOADS]: The documentation provides instructions to install the @veil-cash/sdk dependency via global npm installation or by cloning the official repository from GitHub.
- [COMMAND_EXECUTION]: Shell scripts execute the veil CLI and node to perform ZK-proof generation and blockchain interactions. Other tools like curl and jq are used for API communication and data processing.
- [DATA_EXFILTRATION]: Communicates with api.bankr.bot (vendor resource) to submit prompts and request message signatures for key derivation.
- [CREDENTIALS_UNSAFE]: Reads and writes sensitive data, including Veil private keys and Bankr API keys, to local storage. It explicitly manages file permissions using chmod 600 for these secret files.
Audit Metadata