The Agent Skills Directory

[SAFE]: No malicious patterns or security vulnerabilities were detected in this skill. The skill provides clear instructions for using standard command-line tools like openssl for key generation and gmgn-cli for market analysis.
[COMMAND_EXECUTION]: The skill uses local commands such as openssl, date, and jq. These are used for legitimate purposes like generating cryptographic keys for API registration and processing time-series data.
[CREDENTIALS_UNSAFE]: The skill implements secure credential management by instructing the user to store their API key in a restricted configuration file (~/.config/gmgn/.env) with chmod 600 permissions. It does not attempt to access unauthorized sensitive files or exfiltrate environment variables.
[EXTERNAL_DOWNLOADS]: The skill references the global installation of gmgn-cli via npm. This is a standard dependency for the skill's functionality and aligns with the vendor resource rules for 'GMGNAI'.
[DATA_EXFILTRATION]: Network operations are restricted to the primary API endpoint and a well-known service (icanhazip.com) used solely for IPv6 debugging as described in the documentation.

gmgn-market