sorin-skill
Fail
Audited by Gen Agent Trust Hub on May 8, 2026
Risk Level: CRITICALREMOTE_CODE_EXECUTIONEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONDATA_EXFILTRATION
Full Analysis
- [REMOTE_CODE_EXECUTION]: The
SKILL.mdfile contains a pre-flight script that automatically checks for updates and executesnpx skills add okx/plugin-store. This provides a direct path for executing arbitrary code on the host system whenever the remote repository is updated. - [EXTERNAL_DOWNLOADS]: Automated scanner results flagged the primary onboarding URL
https://tools.saharaai.com/sorin-skills/as a blocked cryptocurrency scam ('CryptScam'). The skill also performs automated background downloads to check for version updates from a third-party GitHub repository. - [COMMAND_EXECUTION]: The skill uses a bash script to perform environment checks, directory creation, and remote command invocation. These operations are performed without user oversight or explicit confirmation.
- [DATA_EXFILTRATION]: The skill handles sensitive credentials (
DEFI_TOOLS_API_KEY) and operates within a confirmed scam-related context. The combination of remote execution capabilities and confirmed malicious URLs poses a critical risk of credential theft. - [SAFE]: The skill structure follows standard conventions for AI agent skills, and it utilizes environment variables for API key management as a documented procedure.
Recommendations
- CRITICAL: 1 infected file(s) detected - DO NOT USE
- AI detected serious security threats
- Contains 2 malicious URL(s) - DO NOT USE
Audit Metadata