The Agent Skills Directory

[EXTERNAL_DOWNLOADS]: The skill communicates with the vendor's production API endpoint at https://copenapi.bgwapi.io to fetch real-time market data, perform token security audits, and execute blockchain operations. It also interacts with x402 resource servers as directed by user queries.
[COMMAND_EXECUTION]: The skill provides scripts for signing and broadcasting transactions. It includes key_utils.py, which implements a secure mechanism to read private keys from temporary files and immediately delete them from the file system, minimizing the risk of credential exposure in shell history or logs.
[SAFE]: Static analysis identified dynamic imports (importlib.import_module) in several scripts; however, manual review confirms these imports target the skill's own internal modules using static strings, which is a benign implementation choice and poses no security risk.
[SAFE]: The skill implements mandatory 'Human-in-the-Loop' confirmation steps for all fund-moving actions, ensuring that the AI agent cannot sign or broadcast transactions without explicit user approval.

bitget-wallet