locus-agent-tools
Warn
Audited by Snyk on Jun 21, 2026
Risk Level: MEDIUM
Full Analysis
MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).
- Potentially malicious external URL detected (high risk: 0.80). The skill explicitly instructs the agent to fetch live tool manifests and execute tools at runtime (e.g., https://api.locus.report/tools/list, https://api.locus.report/tools/call and the MCP endpoint https://mcp.locus.report/mcp), and those remote manifests/challenges directly control which tool calls, prompts, and payment flows the agent issues.
MEDIUM W009: Direct money access capability detected (payment gateways, crypto, banking).
- Direct money access detected (high risk: 1.00). The skill includes an explicit on-chain payment flow for paid tools: the "x402 payment flow" describes HTTP 402 challenges, signing an EIP-3009 USDC authorization, using x402 clients (e.g., x402-fetch/x402-axios or Coinbase x402 SDK), submitting the signed authorization in an X-PAYMENT header, and settling payment on a specified network/payTo address. This is a concrete crypto signing/transfer integration (USDC on Base) intended to move funds to pay for tools, so it grants direct financial execution capability.
Issues (2)
W012
MEDIUMUnverifiable external dependency detected (runtime URL that controls agent).
W009
MEDIUMDirect money access capability detected (payment gateways, crypto, banking).
Audit Metadata