gate-dex-market-cli
Pass
Audited by Gen Agent Trust Hub on May 8, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill's setup script and metadata reference binary downloads from
gate-dex-cli.gateweb3.ccandgate-dex-cli-test.gateweb3.cc. These resources are provided by the vendor for the tool's core functionality. - [COMMAND_EXECUTION]: The skill uses the
gate-dexCLI to perform various blockchain operations. This includes a raw RPC feature that executes arbitrary JSON-RPC methods on specified chains based on user input. - [INDIRECT_PROMPT_INJECTION]: The skill processes external blockchain data (token info, market stats) which could potentially contain malicious instructions.
- Ingestion points: Market data, token names/symbols, and RPC response data from external chains are ingested into the agent context via the CLI output.
- Boundary markers: No explicit delimiters or boundary markers are used in the command execution flow to separate external data from instructions.
- Capability inventory: The skill executes the
gate-dexCLI which performs network requests to blockchain RPC providers. - Sanitization: No explicit sanitization or filtering of the blockchain data is evidenced in the provided scripts.
Audit Metadata