Skills
skills/coinpaprika/claude-marketplace/token-security-analyzer/Gen Agent Trust Hub

token-security-analyzer

Pass

Audited by Gen Agent Trust Hub on Apr 17, 2026

Risk Level: SAFEPROMPT_INJECTION
Full Analysis
  • [PROMPT_INJECTION]: The skill processes external data retrieved from blockchain sources, creating a potential surface for indirect prompt injection attacks.
  • Ingestion points: Untrusted data enters the agent context through the outputs of tools like getTokenDetails, getTokenPools, and getPoolTransactions (SKILL.md).
  • Boundary markers: Absent. The skill instructions do not require the use of delimiters or specific markers to isolate external data from the analysis instructions.
  • Capability inventory: The skill uses read-only blockchain analysis tools provided by the environment. It does not possess file system modification, network transmission (beyond tool use), or shell execution capabilities.
  • Sanitization: The skill includes mandatory input validation steps, such as Ethereum address format checking and network name normalization, which mitigate some basic injection attempts.
Audit Metadata
Risk Level
SAFE
Analyzed
Apr 17, 2026, 02:35 AM