evm-defi-dex-swap

Pass

Audited by Gen Agent Trust Hub on Mar 28, 2026

Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
  • [COMMAND_EXECUTION]: The skill uses the caw CLI to perform wallet operations, encode ABI data, and submit blockchain transactions. Evidence: caw tx call and caw util abi encode usage in SKILL.md, references/swap-cycle.md, and references/weth-wrapping.md.
  • [PROMPT_INJECTION]: The skill exhibits an indirect prompt injection surface by processing outputs from the caw tool (transaction status and account balances) to determine workflow progression. Evidence: 1. Ingestion points: caw --format json wallet balance in SKILL.md, caw --format json tx get in SKILL.md and references/weth-wrapping.md; 2. Boundary markers: Absent; 3. Capability inventory: caw tx call used across all script files; 4. Sanitization: Uses the --format json flag for structured parsing of tool output.
Audit Metadata
Risk Level
SAFE
Analyzed
Mar 28, 2026, 03:25 AM
Security Audit — agent-trust-hub — evm-defi-dex-swap