coinpaprika-api
Pass
Audited by Gen Agent Trust Hub on Apr 9, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSREMOTE_CODE_EXECUTIONCOMMAND_EXECUTIONDATA_EXFILTRATIONPROMPT_INJECTION
Full Analysis
- [REMOTE_CODE_EXECUTION]: The CLI reference document suggests installing a tool by downloading and executing a shell script from a remote source.
- Evidence:
curl -sSL https://raw.githubusercontent.com/coinpaprika/coinpaprika-cli/main/install.sh | shinreferences/cli-reference.md. - [EXTERNAL_DOWNLOADS]: The skill downloads an installation script and references various external SDKs and documentation hosted on GitHub and the vendor's official domain.
- Fetches configuration and code from
raw.githubusercontent.comandgithub.comrepositories managed by thecoinpaprikaorganization. - [DATA_EXFILTRATION]: The skill is designed to perform network operations to external API endpoints to retrieve market data.
- Communicates with
api.coinpaprika.com,api-pro.coinpaprika.com, andmcp.coinpaprika.com. - [COMMAND_EXECUTION]: The documentation provides numerous examples of shell commands for the agent to execute for data retrieval and configuration.
- Extensive use of
curlandjqfor API interaction. - Functional CLI commands such as
coinpaprika-cli onboardandcoinpaprika-cli tickers. - [PROMPT_INJECTION]: The skill is susceptible to indirect prompt injection due to its core functionality of processing external data from a third-party API.
- Ingestion points: Data retrieved from
api.coinpaprika.comas documented inSKILL.mdandreferences/openapi.yml. - Capability inventory: Shell execution capabilities using
curland the vendor-provided CLI tool. - Boundary markers: Absent; no specific delimiters or warnings are provided to the agent to isolate untrusted external content.
- Sanitization: Absent; the skill documentation does not mention validation or sanitization of external API responses before processing.
Audit Metadata