chainlink-vrf-skill

Pass

Audited by Gen Agent Trust Hub on May 17, 2026

Risk Level: SAFE
Full Analysis
  • [SAFE]: The skill is a well-structured developer resource for Chainlink VRF v2.5 integration with no malicious patterns detected.
  • [EXTERNAL_DOWNLOADS]: The skill references and fetches documentation from official Chainlink domains (docs.chain.link, vrf.chain.link). These are trusted vendor sources used to ensure accurate implementation guidance.
  • [REMOTE_CODE_EXECUTION]: The instructions guide users to install official libraries using standard package managers, specifically @chainlink/contracts via npm and the smartcontractkit/chainlink-evm repository via Forge. These are established, vendor-owned resources essential for the skill's purpose.
  • [COMMAND_EXECUTION]: Uses curl specifically to retrieve documentation from the developer's official documentation site as a fallback when standard tools are unavailable, which is a benign use of the tool within this context.
Audit Metadata
Risk Level
SAFE
Analyzed
May 17, 2026, 05:25 PM
Security Audit — agent-trust-hub — chainlink-vrf-skill