okx-sentiment-tracker
Pass
Audited by Gen Agent Trust Hub on May 13, 2026
Risk Level: SAFE
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill installs the '@okx_ai/okx-trade-cli' package from the npm registry. This package belongs to the vendor 'okx' and is required for the skill to communicate with the OKX news and sentiment APIs.
- [CREDENTIALS_UNSAFE]: The skill provides instructions for users to manage their own API credentials (API Key, Secret, and Passphrase) through a local configuration file at '~/.okx/config.toml'. No hardcoded secrets or sensitive credentials were found within the skill files.
- [COMMAND_EXECUTION]: The skill executes various subcommands of the 'okx' binary to fetch data. These commands are exclusively read-only (e.g., 'news latest', 'coin-sentiment', 'sentiment-rank') and do not involve system-level modifications or dangerous operations.
- [DATA_EXFILTRATION]: Network activity is limited to fetching data from the OKX API and performing supplementary web searches on well-known, reputable news sites like Coindesk and CoinTelegraph. No unauthorized data transmission or collection of sensitive user data was observed.
Audit Metadata