Skills
skills/starchild-ai-agent/community-skills/@2061/orderly-dex-creator/Gen Agent Trust Hub

@2061/orderly-dex-creator

Warn

Audited by Gen Agent Trust Hub on May 7, 2026

Risk Level: MEDIUMEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONDATA_EXFILTRATION
Full Analysis
  • [EXTERNAL_DOWNLOADS]: The skill fetches multiple software components from the developer's GitHub repositories ('SkewCodes') to handle various DEX operations:
  • 'orderly-domain-builder' for DNS automation
  • 'orderly-growth-agent' for autonomous marketing
  • 'orderly-agentic-mm' for market making
  • 'YieldClaw' for vault management
  • 'SecClaw' for security monitoring
  • [COMMAND_EXECUTION]: The workflow involves cloning remote repositories and executing code through shell scripts and build tools, including:
  • Execution of './orderly-domain-setup.sh' after cloning
  • Running 'npm install' and 'npm run build' on downloaded code for multiple components
  • [EXTERNAL_DOWNLOADS]: The skill incorporates official dependencies from the platform provider, including NPM packages under the '@orderly.network' scope and a Python connector from the 'OrderlyNetwork' GitHub organization.
  • [DATA_EXFILTRATION]: The skill manages high-value assets and sensitive information, requiring users to provide API keys, wallet access, and DNS provider credentials to enable automated trading and infrastructure management.
  • [PROMPT_INJECTION]: The autonomous 'Growth Agent' and 'Market Making' components ingest external data (market metrics and performance indicators) to influence agent actions, presenting a surface for indirect instructions through data manipulation.
Audit Metadata
Risk Level
MEDIUM
Analyzed
May 7, 2026, 10:00 AM
Security Audit — agent-trust-hub — @2061/orderly-dex-creator