Skills
skills/moonpay/skills/dune-analytics/Gen Agent Trust Hub

dune-analytics

Pass

Audited by Gen Agent Trust Hub on Mar 21, 2026

Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONDATA_EXFILTRATION
Full Analysis
  • [EXTERNAL_DOWNLOADS]: The skill references the @moonpay/cli Node.js package from the official NPM registry for wallet operations.
  • [COMMAND_EXECUTION]: Employs curl for making HTTP requests to the Dune API, jq for processing JSON results, and the mp command-line interface for blockchain wallet management (creating, funding, and bridging).
  • [DATA_EXFILTRATION]: Transmits requests to https://api.dune.com to execute SQL queries and retrieve on-chain data. This communication is consistent with the skill's stated purpose of providing blockchain analytics.
  • [CREDENTIALS_UNSAFE]: Guides users to set up a DUNE_API_KEY as an environment variable. While this involves an API key, the instruction follows standard development practices for credential management in shell environments.
Audit Metadata
Risk Level
SAFE
Analyzed
Mar 21, 2026, 10:25 PM
Security Audit — agent-trust-hub — dune-analytics