masumi
Pass
Audited by Gen Agent Trust Hub on May 16, 2026
Risk Level: SAFE
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill provides instructions for downloading and installing official components of the Masumi ecosystem from the author's GitHub repositories and standard package registries (NPM, PyPI). These are standard development operations.
- [COMMAND_EXECUTION]: The documentation includes commands for local environment setup, such as cloning repositories, installing dependencies, and managing a local PostgreSQL database. All commands are relevant to the primary purpose of the skill.
- [CREDENTIALS_UNSAFE]: The guides discuss managing blockchain mnemonics for wallet operations. The skill adheres to security best practices by recommending the use of environment variables for secrets and hardware wallets for production environments.
- [SAFE]: The skill describes an architecture for agents to process external data, identifying potential indirect prompt injection surfaces and recommending mitigations like JSON Schema validation and input length limits.
Audit Metadata