evm-defi-dex-swap
Pass
Audited by Gen Agent Trust Hub on Mar 28, 2026
Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [COMMAND_EXECUTION]: The skill uses the
cawCLI to perform wallet operations, encode ABI data, and submit blockchain transactions. Evidence:caw tx callandcaw util abi encodeusage inSKILL.md,references/swap-cycle.md, andreferences/weth-wrapping.md. - [PROMPT_INJECTION]: The skill exhibits an indirect prompt injection surface by processing outputs from the
cawtool (transaction status and account balances) to determine workflow progression. Evidence: 1. Ingestion points:caw --format json wallet balanceinSKILL.md,caw --format json tx getinSKILL.mdandreferences/weth-wrapping.md; 2. Boundary markers: Absent; 3. Capability inventory:caw tx callused across all script files; 4. Sanitization: Uses the--format jsonflag for structured parsing of tool output.
Audit Metadata