zerion-vaultsfyi-strategist
Pass
Audited by Gen Agent Trust Hub on May 13, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill requires the installation of the 'zerion-cli' package via npm. This is a standard requirement for the vendor's own toolset and follows established installation practices.
- [COMMAND_EXECUTION]: Uses shell commands through the Zerion CLI (e.g., 'zerion portfolio', 'zerion positions') to retrieve wallet data. These commands are integral to the skill's stated purpose of providing financial strategy analysis.
- [PROMPT_INJECTION]: The skill is susceptible to indirect prompt injection due to the way it handles data from external sources.
- Ingestion points: Data is retrieved from the 'vaults.fyi' MCP server, specifically through tools like 'vault_details' and 'vault_apy_history'.
- Boundary markers: No specific boundary markers or delimiters are provided in the skill instructions to separate external data from agent instructions.
- Capability inventory: The skill allows for local shell command execution via the 'zerion' CLI.
- Sanitization: No explicit sanitization or validation of the data received from the external MCP server is described.
Audit Metadata