goldrush-x402
Enables pay-per-request blockchain data access via the x402 protocol, facilitating wallet-based micropayments for AI agents.
Install this skill
or
72/100
Security score
The goldrush-x402 skill was audited on Mar 18, 2026 and we found 12 security issues across 4 threat categories. Review the findings below before installing.
Categories Tested
Security Issues
medium line 96
Template literal with variable interpolation in command context
SourceSKILL.md
| 96 | `https://x402.goldrush.dev/v1/eth-mainnet/address/${wallet}/balances_v2/` |
medium line 83
Curl to non-GitHub URL
SourceSKILL.md
| 83 | curl https://x402.goldrush.dev/v1/x402/endpoints | jq |
medium line 84
Curl to non-GitHub URL
SourceSKILL.md
| 84 | curl https://x402.goldrush.dev/v1/x402/search?q=balance | jq |
medium line 89
Curl to non-GitHub URL
SourceSKILL.md
| 89 | curl https://x402.goldrush.dev/v1/x402/endpoints/get-token-balances-for-address | jq |
low line 19
Access to .env file
SourceSKILL.md
| 19 | privateKey: process.env.WALLET_PRIVATE_KEY, |
low line 25
External URL reference
SourceSKILL.md
| 25 | "https://x402.goldrush.dev/v1/eth-mainnet/address/demo.eth/balances_v2/" |
low line 52
External URL reference
SourceSKILL.md
| 52 | - Foundational API: `https://api.covalenthq.com/v1/...` |
low line 53
External URL reference
SourceSKILL.md
| 53 | - x402 proxy: `https://x402.goldrush.dev/v1/...` |
low line 83
External URL reference
SourceSKILL.md
| 83 | curl https://x402.goldrush.dev/v1/x402/endpoints | jq |
low line 84
External URL reference
SourceSKILL.md
| 84 | curl https://x402.goldrush.dev/v1/x402/search?q=balance | jq |
low line 89
External URL reference
SourceSKILL.md
| 89 | curl https://x402.goldrush.dev/v1/x402/endpoints/get-token-balances-for-address | jq |
low line 96
External URL reference
SourceSKILL.md
| 96 | `https://x402.goldrush.dev/v1/eth-mainnet/address/${wallet}/balances_v2/` |
Scanned on Mar 18, 2026
View Security DashboardInstall this skill with one command
/learn @covalenthq/goldrush-x402