use-developer-controlled-wallets
Enables developers to create and manage Circle wallets with full custody of keys, ensuring secure transactions and wallet management.
Install this skill
or
89/100
Security score
The use-developer-controlled-wallets skill was audited on Jun 11, 2026 and we found 7 security issues across 2 threat categories. Review the findings below before installing.
Categories Tested
Security Issues
low line 39
Access to .env file
SourceSKILL.md
| 39 | apiKey: process.env.CIRCLE_API_KEY, |
low line 40
Access to .env file
SourceSKILL.md
| 40 | entitySecret: process.env.ENTITY_SECRET, |
medium line 78
Access to .env file
SourceSKILL.md
| 78 | - NEVER hardcode, commit, or log secrets (API keys, entity secrets, private keys). ALWAYS use environment variables or a secrets manager. Add `.gitignore` entries for `.env*`, `*.pem`, and `*-recovery |
low line 27
External URL reference
SourceSKILL.md
| 27 | The developer must register an entity secret before using the SDK. Direct them to https://developers.circle.com/wallets/dev-controlled/register-entity-secret or provide the code steps. |
low line 55
External URL reference
SourceSKILL.md
| 55 | - **Supported Blockchains**: EVM chains (Ethereum, Polygon, Avalanche, Arbitrum, Base, Monad, Optimism, Unichain), Solana, Aptos, NEAR, and Arc. See https://developers.circle.com/wallets/account-types |
low line 104
External URL reference
SourceSKILL.md
| 104 | - [Circle Developer Docs](https://developers.circle.com/llms.txt) -- **Always read this first** when looking for relevant documentation from the source website. |
low line 108
External URL reference
SourceSKILL.md
| 108 | DISCLAIMER: This skill is provided "as is" without warranties, is subject to the [Circle Developer Terms](https://console.circle.com/legal/developer-terms), and output generated may contain errors and |
Scanned on Jun 11, 2026
View Security Dashboard