openfin-setup
Pass
Audited by Gen Agent Trust Hub on May 27, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: No malicious patterns, obfuscation, or unauthorized data exfiltration attempts were detected.
- [CREDENTIALS_UNSAFE]: The skill manages authentication tokens using best practices. It directs the agent to locate the
OPENFINANCE_API_KEYfrom environment variables or configuration files and contains explicit instructions to avoid echoing the raw key in chat or logs, using it only within request headers. - [EXTERNAL_DOWNLOADS]: The skill references
openfinance.tech, which is the official domain of the skill's author (openfinance-tech). These interactions are consistent with the skill's primary purpose of authentication and wallet verification for the OpenFinance service.
Audit Metadata