Skills
skills/holon-run/uxc/upbit-openapi-skill/Gen Agent Trust Hub

upbit-openapi-skill

Pass

Audited by Gen Agent Trust Hub on Mar 29, 2026

Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTION
Full Analysis
  • [EXTERNAL_DOWNLOADS]: The skill downloads a curated OpenAPI specification from the author's public repository on GitHub (holon-run/uxc) to configure the API interface.
  • [COMMAND_EXECUTION]: Instructs the agent to utilize the uxc link command to establish a local CLI alias for interacting with Upbit's regional REST endpoints.
  • [COMMAND_EXECUTION]: Contains a validation script (scripts/validate.sh) that performs structural and content checks on the skill's local files using standard utilities like jq and rg.
  • [DATA_EXPOSURE]: Explicitly restricts operations to public market data discovery and ticker reads, documenting that private account endpoints and authentication flows are out of scope for this version.
Audit Metadata
Risk Level
SAFE
Analyzed
Mar 29, 2026, 03:14 AM
Security Audit — agent-trust-hub — upbit-openapi-skill