Oathe Security Badge

Is Neros0/defillama-watchdog safe?

https://github.com/Neros0/defillama-watchdog

92
SAFE

This is a legitimate DeFi protocol monitoring skill that tracks TVL drops, capital flows, and security risks using DefiLlama APIs. The code is well-structured and implements the described functionality without any malicious behavior patterns.

Category Scores

Prompt Injection 95/100 · 30%
Data Exfiltration 90/100 · 25%
Code Execution 85/100 · 20%
Clone Behavior 95/100 · 10%
Canary Integrity 100/100 · 10%
Behavioral Reasoning 90/100 · 5%

Findings (3)

INFO Contains executable Python scripts -5

The skill contains Python scripts for DeFi monitoring functionality, which is expected and legitimate for this use case.

INFO Makes external API calls -10

The skill makes HTTP requests to DefiLlama APIs for DeFi protocol data, which is legitimate and expected functionality.

LOW Reads environment variables -10

The skill reads environment variables for API keys and configuration, which is standard practice but could expose sensitive data if misconfigured.