Skip to main content

eth-agent

Expertly integrates the eth-agent library for seamless stablecoin transactions on Ethereum, enhancing AI agent payment systems.

Install this skill

or
20/100

Security score

The eth-agent skill was audited on Mar 8, 2026 and we found 20 security issues across 3 threat categories. Review the findings below before installing.

Categories Tested

Security Issues

medium line 104

Template literal with variable interpolation in command context

SourceSKILL.md
104console.log(`Approval needed: ${request.summary}`);
medium line 135

Template literal with variable interpolation in command context

SourceSKILL.md
135console.log(`Success! TX: ${result.value.hash}`);
medium line 137

Template literal with variable interpolation in command context

SourceSKILL.md
137console.log(`Error: ${result.error.code}`);
medium line 138

Template literal with variable interpolation in command context

SourceSKILL.md
138console.log(`Suggestion: ${result.error.suggestion}`);
medium line 146

Template literal with variable interpolation in command context

SourceSKILL.md
146.ok(r => `Sent! TX: ${r.hash}`)
medium line 147

Template literal with variable interpolation in command context

SourceSKILL.md
147.errWith({ code: 'INSUFFICIENT_FUNDS' }, e => `Need more: ${e.details.shortage}`)
medium line 217

Template literal with variable interpolation in command context

SourceSKILL.md
217console.log(`Received ${payment.formattedAmount} ${payment.token.symbol}`);
medium line 285

Template literal with variable interpolation in command context

SourceSKILL.md
285console.log(`${quote.protocol}: ${quote.fee.totalUSD} USD fee`);
medium line 299

Template literal with variable interpolation in command context

SourceSKILL.md
299console.log(`Ready to bridge. Fee: $${preview.quote?.fee.totalUSD}`);
medium line 300

Template literal with variable interpolation in command context

SourceSKILL.md
300console.log(`Needs approval: ${preview.needsApproval}`);
medium line 314

Template literal with variable interpolation in command context

SourceSKILL.md
314console.log(`Progress: ${status.progress}%`);
medium line 315

Template literal with variable interpolation in command context

SourceSKILL.md
315console.log(`Message: ${status.message}`);
medium line 332

Template literal with variable interpolation in command context

SourceSKILL.md
332console.log(`Success! Tracking: ${result.value.trackingId}`);
medium line 334

Template literal with variable interpolation in command context

SourceSKILL.md
334console.log(`Error: ${result.error.code}`);
medium line 335

Template literal with variable interpolation in command context

SourceSKILL.md
335console.log(`Suggestion: ${result.error.suggestion}`);
low line 30

Access to .env file

SourceSKILL.md
30privateKey: process.env.ETH_PRIVATE_KEY,
low line 440

Access to .env file

SourceSKILL.md
440privateKey: process.env.ETH_PRIVATE_KEY,
low line 441

Access to .env file

SourceSKILL.md
441rpcUrl: process.env.RPC_URL,
low line 31

External URL reference

SourceSKILL.md
31rpcUrl: 'https://eth.llamarpc.com',
low line 190

External URL reference

SourceSKILL.md
190bundlerUrl: 'https://bundler.example.com',
Scanned on Mar 8, 2026
View Security Dashboard
Installation guide →
GitHub Stars 3
Rate this skill
Categorydevelopment
UpdatedMay 21, 2026
claude-codecursorwindsurfclineroo-codeampcodexgoosetraeopencodevibemanusantigravitygemini-cliapibackendcross-platformml-ai-engineerbackend-developerproduct-managerdevelopmentproduct
diegosouzapw/awesome-omni-skill