cuckoo-strategy
Pass
Audited by Gen Agent Trust Hub on Jun 28, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSPROMPT_INJECTIONCOMMAND_EXECUTIONREMOTE_CODE_EXECUTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The
README.mdfile contains installation instructions that fetch Python scripts and configuration files from the vendor's official GitHub repository (Senpi-ai/senpi-skills) usingcurl. These resources are necessary for the strategy's operation. - [PROMPT_INJECTION]: The skill is subject to an indirect prompt injection surface (Category 8) due to its processing of external strategy and position data.
- Ingestion points: Data enters the system via
fetch_top_strategiesandfetch_strategy_positionsinscripts/cuckoo-producer.py, which call external tools to retrieve leaderboard and position details. - Boundary markers: The decision prompt in
runtime.yamlinterpolates the ingested signal data without utilizing specific delimiters or instructions to ignore potential commands embedded within the data values. - Capability inventory: The agent has the ability to perform financial transactions (opening and closing trading positions) and access sensitive account state through platform tools.
- Sanitization: The skill applies basic type casting and case normalization to ingested data but lacks comprehensive sanitization or validation for malicious prompt injection payloads.
- [COMMAND_EXECUTION]: The installation process involves executing shell commands to configure the environment and start the producer daemon as a persistent background process using
nohupanddisown. - [REMOTE_CODE_EXECUTION]: The
tests/test_signal.pyscript utilizes dynamic module loading viaimportlib.utilto execute code from the localscripts/cuckoo-producer.pyfile for unit testing purposes.
Audit Metadata