dhanhq
Pass
Audited by Gen Agent Trust Hub on Apr 27, 2026
Risk Level: SAFE
Full Analysis
- [DATA_EXPOSURE]: The skill handles sensitive API credentials (Client ID and Access Token) through secure mechanisms, specifically environment variables or local configuration files, avoiding hardcoded secrets in the code or instructions.
- [EXTERNAL_DOWNLOADS]: The skill fetches instrument master data (CSV files) from official Dhan infrastructure (images.dhan.co) as part of its standard functionality to ensure accurate trading data.
- [PROMPT_INJECTION]:
- Ingestion points: The skill documentation in
references/scanx-data.mdoutlines a workflow for fetching fundamental and technical data from the external websitescanx.trade. - Boundary markers:
SKILL.mdmandates strict 'Safety Rules' requiring the agent to provide a readable order preview and obtain explicit user confirmation before any live trade execution. - Capability inventory: The skill possesses capabilities for financial order management, including placing, modifying, and canceling stock and derivative orders.
- Sanitization: Documentation examples describe data extraction for informational purposes; the skill relies on mandatory human verification as the primary safety control for actions influenced by external data.
Audit Metadata