whalehunter-strategy

Pass

Audited by Gen Agent Trust Hub on Jun 28, 2026

Risk Level: SAFE
Full Analysis
  • [EXTERNAL_DOWNLOADS]: The skill's installation process fetches its core logic and runtime dependencies directly from the official Senpi-ai GitHub repository. This is an expected deployment method for vendor-provided skills.
  • [DATA_EXFILTRATION]: Sensitive authentication data and wallet identifiers are managed exclusively through environment variables (e.g., SENPI_AUTH_TOKEN). This adheres to standard security practices for credential isolation in trading environments.
  • [COMMAND_EXECUTION]: The strategy employs standard background process management (using setsid and nohup) to maintain the persistence of its monitoring daemons, which is essential for the skill's primary function of tracking real-time market signals.
  • [PROMPT_INJECTION]: The runtime configuration includes a robust LLM decision gate with strict output rules, hard skip conditions, and confidence scoring to ensure only valid trading signals generated by the trusted internal producer are executed.
Audit Metadata
Risk Level
SAFE
Analyzed
Jun 28, 2026, 08:48 PM
Security Audit — agent-trust-hub — whalehunter-strategy