trade-executor

Pass

Audited by Gen Agent Trust Hub on Jun 23, 2026

Risk Level: SAFE
Full Analysis
  • [EXTERNAL_DOWNLOADS]: Communicates with official API endpoints for Binance (api.binance.com, fapi.binance.com) and OKX (api.okx.com). These are well-known financial services.
  • [CREDENTIALS_UNSAFE]: Safely manages secrets (API Keys, Secrets, and Passphrases) by referencing standard environment variables such as BINANCE_API_KEY and OKX_API_SECRET rather than hardcoding values.
  • [COMMAND_EXECUTION]: Explicitly enforces security constraints by setting exec = deny, preventing arbitrary shell command execution.
  • [PROMPT_INJECTION]: Includes robust internal logic to prevent automated or unauthorized actions, specifically requiring mandatory user confirmation for all trades and enforcing risk-check validation (e.g., maximum transaction amounts, daily limits).
Audit Metadata
Risk Level
SAFE
Analyzed
Jun 23, 2026, 06:06 AM
Security Audit — agent-trust-hub — trade-executor