python-strategy
Pass
Audited by Gen Agent Trust Hub on May 15, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill documentation includes instructions to fetch script and configuration files from the vendor's official GitHub repository (Senpi-ai/senpi-skills). These are identified as legitimate vendor resources required for installation.
- [COMMAND_EXECUTION]: The skill uses the 'mcporter' CLI tool via Python's subprocess module to interact with the Senpi trading platform. The commands are constructed using argument lists, which is a secure practice that prevents shell injection.
- [SAFE]: A thorough review of the source code confirms that all operations, including market data analysis and position management, are consistent with the skill's stated purpose. No malicious behavior, obfuscation, or unauthorized access to sensitive data was detected.
Audit Metadata