x402-on-skale
Pass
Audited by Gen Agent Trust Hub on Apr 27, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSPROMPT_INJECTIONDATA_EXFILTRATION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill requires the installation of several Node.js packages and interacts with external payment facilitator services.
- Evidence: Installation of @x402/core, @x402/evm, and @x402/hono in SKILL.md.
- Evidence: Communication with facilitators such as facilitator.payai.network and corbits.dev.
- [PROMPT_INJECTION]: The skill ingests data from external APIs, creating a potential surface for indirect prompt injection.
- Ingestion points: examples/complete-setup.md processes JSON responses from external URLs.
- Boundary markers: No delimiters or instructions to ignore embedded commands are present in the examples.
- Capability inventory: The agent has network access (fetch) and the ability to sign cryptographic payloads.
- Sanitization: No explicit validation or sanitization of API responses is shown in the code snippets.
- [DATA_EXFILTRATION]: The implementation performs network operations to external domains to process payments.
- Evidence: Client and server code snippets in SKILL.md and examples/complete-setup.md make HTTP requests to third-party facilitator URLs to facilitate the x402 protocol flow.
Audit Metadata