quicknode-skill

Fail

Audited by Gen Agent Trust Hub on May 19, 2026

Risk Level: CRITICALEXTERNAL_DOWNLOADSDATA_EXFILTRATION
Full Analysis
  • [EXTERNAL_DOWNLOADS]: Automated security scanners identified multiple malicious URLs within the skill's reference documentation. Specifically, the URLite scanner flagged placeholders for the Quicknode IPFS gateway (e.g., https://YOUR_GATEWAY.quicknode-ipfs.com/ipfs) as phishing risks.
  • [DATA_EXFILTRATION]: Antivirus scans detected a potential infection in references/ipfs-reference.md. The file was flagged with the HttpRequest-inf [Susp] signature, which typically denotes suspicious or unauthorized HTTP request patterns often associated with data exfiltration attempts.
  • [SAFE]: The skill provides clear instructions on managing sensitive credentials using environment variables, which is a standard security best practice.
  • [SAFE]: Explicit safety defaults are included to prevent the agent from requesting or accepting sensitive private keys from users.
Recommendations
  • CRITICAL: 1 infected file(s) detected - DO NOT USE
  • AI detected serious security threats
  • Contains 3 malicious URL(s) - DO NOT USE
Audit Metadata
Risk Level
CRITICAL
Analyzed
May 19, 2026, 08:18 AM
Security Audit — agent-trust-hub — quicknode-skill