Skills
skills/injectivelabs/agent-skills/injective-funding/Gen Agent Trust Hub

injective-funding

Pass

Audited by Gen Agent Trust Hub on May 11, 2026

Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
  • [SAFE]: The skill facilitates standard blockchain interactions using official or well-known libraries related to the Injective ecosystem.
  • [COMMAND_EXECUTION]: Documents command-line interface usage for executing Python scripts that manage funds, such as python scripts/fund_subaccounts.py.
  • [PROMPT_INJECTION]: The faucet server implementation contains a surface for indirect prompt injection via user-provided blockchain addresses.
  • Ingestion points: The req.body?.address property in the /api/faucet endpoint in SKILL.md.
  • Boundary markers: Regular expressions INJ_BECH32 and ETH_HEX validate the input format.
  • Capability inventory: Utilizes MsgBroadcasterWithPk for network-based transaction broadcasting and describes file-backed rate limiting.
  • Sanitization: Input is validated against Bech32 and Hex patterns.
Audit Metadata
Risk Level
SAFE
Analyzed
May 11, 2026, 07:43 PM