iguana-strategy

Pass

Audited by Gen Agent Trust Hub on Jun 28, 2026

Risk Level: SAFE
Full Analysis
  • [SAFE]: No security issues or malicious patterns were identified during the analysis of the skill instructions and associated scripts.
  • [EXTERNAL_DOWNLOADS]: The skill's documentation provides instructions to download strategy-specific Python scripts and configuration files from the vendor's official GitHub repository (github.com/Senpi-ai/senpi-skills). These downloads are part of the standard installation process for the strategy.
  • [COMMAND_EXECUTION]: The strategy requires the execution of a long-lived Python daemon (iguana-producer.py) which manages the core trading logic, including market data fetching and signal generation. This script is intended to run in the background on the operator's host.
  • [DATA_EXFILTRATION]: The skill interacts with the Senpi-ai API to push trading signals and fetch account state. These network operations are restricted to the vendor's infrastructure and are necessary for the strategy's primary function.
Audit Metadata
Risk Level
SAFE
Analyzed
Jun 28, 2026, 08:48 PM
Security Audit — agent-trust-hub — iguana-strategy