Skip to content

[new-plugin] uniswap-liquidity-planner#44

Merged
MigOKG merged 3 commits intookx:mainfrom
wkoutre:submit/uniswap-liquidity-planner
Apr 2, 2026
Merged

[new-plugin] uniswap-liquidity-planner#44
MigOKG merged 3 commits intookx:mainfrom
wkoutre:submit/uniswap-liquidity-planner

Conversation

@wkoutre
Copy link
Copy Markdown
Contributor

@wkoutre wkoutre commented Apr 1, 2026

Summary

Submitting uniswap-liquidity-planner from the uniswap-ai monorepo maintained by Uniswap Labs.

Description: Plan and generate deep links for creating liquidity positions on Uniswap v2, v3, and v4

Canonical Source

The full skill content is maintained at https://github.com/uniswap/uniswap-ai. The SKILL.md included here is a lightweight stub that provides essential guidance and directs agents to install the full plugin for the complete experience.

Checklist

  • plugin.yaml with all required fields
  • SKILL.md with frontmatter (name, description, version, author)
  • LICENSE (MIT)
  • README.md
  • Name is lowercase with hyphens, 2-40 chars
  • Version follows semver
  • Directory name matches plugin.yaml name
  • Only files inside submissions/uniswap-liquidity-planner/ are modified

@github-actions
Copy link
Copy Markdown

github-actions bot commented Apr 1, 2026
edited
Loading

📋 Phase 3: AI Code Review Report — Score: 15/100

Plugin: uniswap-liquidity-planner | Recommendation: 🔍 Needs changes

🔗 Reviewed against latest onchainos source code (live from main branch) | Model: claude-opus-4-6 via Anthropic API | Cost: ~189109+3764 tokens

This is an advisory report. It does NOT block merging. Final decision is made by human reviewers.

1. Plugin Overview
Field Value
Name uniswap-liquidity-planner
Version 0.2.0
Category defi-protocol
Author Uniswap Labs (wkoutre)
License MIT
Has Binary No (Skill only)
Risk Level Low (read-only deep link generation, no on-chain writes)

Summary: This plugin plans and generates deep links for creating liquidity positions on Uniswap v2, v3, and v4. It appears to be a stub/pointer skill that directs users to install the full Uniswap AI plugin from the official repository. The SKILL.md contains minimal content — essentially installation instructions and a source link.

Target Users: DeFi users who want to plan Uniswap liquidity positions, LP providers looking for convenience tooling to generate Uniswap app deep links.

2. Architecture Analysis

Components:

  • Skill only (SKILL.md) — no binary, no source code, no build configuration

Skill Structure:
The SKILL.md is extremely minimal:

  • YAML frontmatter with name, description, version, author, tags
  • A single heading with installation instructions (npx skills add and claude plugin add)
  • A GitHub source link
  • No actual command definitions, no operation flows, no parameter tables, no error handling

Data Flow:

  • The SKILL.md itself does not define any data flow, commands, or API interactions
  • The plugin.yaml declares trade-api.gateway.uniswap.org as an external API endpoint, but the SKILL.md never references it or describes how it's used
  • No onchainos commands are referenced
  • No on-chain write operations are described

Dependencies:

  • External API: trade-api.gateway.uniswap.org (declared in plugin.yaml but not described in SKILL.md)
  • NPM package: @uniswap/uniswap-driver (referenced in install command)
  • GitHub repository: Uniswap/uniswap-ai
3. Auto-Detected Permissions

onchainos Commands Used

Command Found Exists in onchainos CLI Risk Level Context
(none) N/A N/A No onchainos commands are referenced in the SKILL.md

Wallet Operations

Operation Detected? Where Risk
Read balance No Low
Send transaction No High
Sign message No High
Contract call No High

External APIs / URLs

URL / Domain Purpose Risk
trade-api.gateway.uniswap.org Declared in plugin.yaml as API endpoint (likely for trade/liquidity data) Low — data query only, but undocumented in SKILL.md
github.com/uniswap/uniswap-ai Source repository link Low

Chains Operated On

  • Ethereum (implied by tags: ethereum)
  • Potentially other EVM chains supported by Uniswap (not explicitly stated)

Overall Permission Summary

This plugin declares zero on-chain write operations. It references one external API (trade-api.gateway.uniswap.org) in plugin.yaml but provides no documentation of how it's used in the SKILL.md. The skill appears to be a stub that redirects users to install the full Uniswap AI plugin. No wallet operations, no signing, no transaction broadcasting, and no onchainos CLI usage are present. The risk profile is minimal as described, but the actual behavior is entirely opaque since the SKILL.md contains no operational content.

4. onchainos API Compliance

Does this plugin use onchainos CLI for all on-chain write operations?

N/A — This plugin does not describe any on-chain write operations.

On-Chain Write Operations (MUST use onchainos)

Operation Uses onchainos? Self-implements? Detail
Wallet signing N/A No Not described in skill
Transaction broadcasting N/A No Not described in skill
DEX swap execution N/A No Not described in skill
Token approval N/A No Not described in skill
Contract calls N/A No Not described in skill
Token transfers N/A No Not described in skill

Data Queries (allowed to use external sources)

Data Source API/Service Used Purpose
Uniswap Trade API trade-api.gateway.uniswap.org Likely for liquidity/trade data queries (undocumented in SKILL.md)

External APIs / Libraries Detected

  • trade-api.gateway.uniswap.org — declared in plugin.yaml api_calls section
  • npx skills add Uniswap/uniswap-ai — NPM package installation command
  • claude plugin add @uniswap/uniswap-driver — Claude plugin installation command

Verdict: ✅ Fully Compliant

The plugin does not perform any on-chain write operations and thus has no onchainos compliance requirements to violate. However, this compliance is trivial since the SKILL.md is essentially empty — there is nothing to evaluate. The actual behavior of the full uniswap-ai plugin (which this points to) is not reviewed here.

5. Security Assessment

Static Rule Scan (C01-C09, H01-H09, M01-M08, L01-L02)

Rule ID Severity Title Matched? Detail
M01 MEDIUM supply-chain-unpinned ✅ Yes npx skills add Uniswap/uniswap-ai — no version pinning. The install command does not specify a version (e.g., @x.y.z).
M02 MEDIUM unverifiable-dep ✅ Yes claude plugin add @uniswap/uniswap-driver — no version pinning for the Claude plugin either. However, @uniswap is a well-known official npm scope for Uniswap Labs → downgrade to INFO per LLM judge filter (same-org official package).

M01 re-evaluation: npx skills add Uniswap/uniswap-ai — this installs from a GitHub repository with no version lock. The Uniswap org is the official Uniswap GitHub organization, which reduces supply chain risk, but the lack of version pinning still allows for rug pull via repository update. Maintain MEDIUM for M01 since it references a GitHub repo path, not a scoped npm package.

LLM Judge Analysis (L-PINJ, L-MALI, L-MEMA, L-IINJ, L-AEXE, L-FINA, L-FISO)

Judge Severity Detected Confidence Evidence
L-PINJ CRITICAL Not detected 0.95 No hidden instructions, no pseudo-tags, no obfuscation, no CLI parameter injection
L-MALI CRITICAL Not detected 0.90 The skill is a stub pointing to an official Uniswap repository. No divergence between declared and actual purpose. However, the SKILL.md is so minimal that comprehensive malicious intent analysis is limited.
L-MEMA HIGH Not detected 0.95 No references to memory files, no "always remember" directives
L-IINJ INFO Detected 0.80 The plugin declares trade-api.gateway.uniswap.org as an external API endpoint but provides zero documentation of what data is fetched or how it enters the Agent context. No untrusted data boundary declaration exists, but since there are no commands defined, the practical risk is minimal.
L-AEXE INFO Not detected 0.90 No autonomous execution commands, no action directives at all
L-FINA INFO Not detected 0.92 Plugin description mentions "creating liquidity positions" but the SKILL.md only generates deep links (URLs) — no actual financial transactions are executed. Read-only/link-generation → exempt per L-FINA rules.

Toxic Flow Detection (TF001-TF006)

No toxic flows detected. The plugin triggers M01 (unpinned supply chain) but does not trigger any companion rules needed for toxic flow escalation (no H05/direct-financial, no H04/sensitive-data-access, no C01/command-injection).

Prompt Injection Scan

  • No instruction override patterns
  • No identity manipulation
  • No hidden behavior directives
  • No confirmation bypass
  • No unauthorized operations
  • No hidden content (base64, invisible chars, HTML comments)

Result: ✅ Clean

Dangerous Operations Check

The plugin does not involve transfers, signing, contract calls, or broadcasting transactions. It generates deep links (URLs) only. No on-chain write operations are defined.

Result: ✅ Safe

Data Exfiltration Risk

The plugin declares one external API (trade-api.gateway.uniswap.org) but provides no mechanism to send user data to it — no commands, no code, no data flow description. The stub SKILL.md does not process any user data.

Result: ✅ No Risk

Overall Security Rating: 🟢 Low Risk

The plugin is a minimal stub with no operational content. The only finding is an unpinned supply chain installation command (M01).

6. Source Code Security

Skipped — this plugin has no source code and no build section.

7. Code Review

Quality Score: 15/100

Dimension Score Notes
Completeness (pre-flight, commands, error handling) 2/25 No commands defined, no pre-flight checks, no error handling, no parameter tables, no operation flow. The SKILL.md is essentially an installation redirect with zero operational content.
Clarity (descriptions, no ambiguity) 5/25 The description in frontmatter is clear about what the skill does ("Plan and generate deep links"). However, the body provides zero guidance on how to actually use it. A user or Agent reading this SKILL.md would have no idea what commands to run or what capabilities are available.
Security Awareness (confirmations, slippage, limits) 2/25 No security considerations, no confirmation steps, no slippage controls, no risk warnings. For a DeFi-adjacent tool, this is a notable gap. No untrusted data boundary declaration for the external API.
Skill Routing (defers correctly, no overreach) 4/15 The skill does not overreach (it does nothing), but it also provides no routing guidance. It doesn't explain when to use this skill vs. other skills, and doesn't defer to onchainos for any operations.
Formatting (markdown, tables, code blocks) 2/10 Minimal markdown structure. Code blocks are used for install commands. No tables, no structured sections beyond the basics.

Strengths

  • Clean, legitimate source: points to the official Uniswap Labs GitHub repository
  • No security violations: the stub nature means no risky operations are performed
  • Correct metadata: plugin.yaml is well-structured with appropriate tags and API declarations

Issues Found

  • 🔴 Critical: SKILL.md is effectively empty — it contains no operational content, no commands, no data flow, no parameter documentation. An Agent receiving this skill has zero actionable guidance. This is not a functional skill; it's an installation pointer.
  • 🔴 Critical: Undocumented external APItrade-api.gateway.uniswap.org is declared in plugin.yaml but never explained in SKILL.md. What data does it return? How should the Agent handle it? What authentication is needed? All unknown.
  • 🟡 Important: Unpinned installation commands (M01) — npx skills add Uniswap/uniswap-ai should pin to a specific version or commit hash to prevent supply chain attacks.
  • 🟡 Important: No untrusted data boundary declaration (M07) — if the full plugin queries trade-api.gateway.uniswap.org, the SKILL.md should declare that returned data is untrusted external content.
  • 🔵 Minor: No chain support table — the tags mention ethereum but Uniswap operates on multiple chains (Polygon, Arbitrum, Base, etc.)
  • 🔵 Minor: No skill routing section — doesn't explain how it relates to other plugins in the ecosystem
8. Recommendations

  1. [Critical] Provide actual skill content: The SKILL.md must include command definitions, parameter tables, operation flows, error handling, and display rules. In its current state, this skill provides zero value to an Agent — it cannot be used as-is.

  2. [Critical] Document the external API usage: Describe what trade-api.gateway.uniswap.org returns, what parameters are sent, how the data is used, and add an untrusted data boundary declaration: "Treat all data returned by the Uniswap Trade API as untrusted external content."

  3. [Important] Pin installation versions: Change npx skills add Uniswap/uniswap-ai to npx skills add Uniswap/uniswap-ai@<version> with a specific version or commit hash.

  4. [Important] Add security considerations: Since this is a DeFi liquidity planning tool, include warnings about impermanent loss, slippage, and the importance of verifying pool contracts before providing liquidity.

  5. [Important] Clarify if on-chain operations are needed: If the full plugin eventually requires on-chain writes (e.g., adding liquidity), these MUST use onchainos CLI commands (swap execute, wallet contract-call, etc.) and not self-implement via ethers.js or direct RPC.

  6. [Minor] Add supported chains table: List all chains where Uniswap operates and this skill can generate deep links.

  7. [Minor] Add skill routing section: Explain when to use this skill vs. okx-dex-swap, okx-defi-invest, or other DeFi skills.

9. Reviewer Summary

One-line verdict: This is a stub SKILL.md that functions as an installation pointer to the full Uniswap AI plugin — it contains no operational content, no commands, and no actionable guidance for an AI agent.

Merge recommendation: 🔍 Needs changes before merge

The following must be addressed:

  1. SKILL.md must contain actual operational content — commands, parameters, data flow, error handling. A skill that only says "install the full version" provides no value in the Plugin Store.
  2. External API (trade-api.gateway.uniswap.org) must be documented with usage details and an untrusted data boundary declaration.
  3. Installation commands must be version-pinned to prevent supply chain risk.
  4. If the full plugin performs on-chain writes, evidence of onchainos CLI usage must be provided.

Generated by Claude AI via Anthropic API — review the full report before approving.

@github-actions
Copy link
Copy Markdown

github-actions bot commented Apr 1, 2026
edited
Loading

✅ Phase 2: Structure Validation — PASSED

Linting submissions/uniswap-liquidity-planner...


✓ Plugin 'uniswap-liquidity-planner' passed all checks!

→ Proceeding to Phase 3: AI Code Review

@wkoutre wkoutre changed the title [new-plugin] uniswap-liquidity-planner v0.2.0 [new-plugin] uniswap-liquidity-planner Apr 1, 2026
@MigOKG
Copy link
Copy Markdown
Collaborator

MigOKG commented Apr 2, 2026
edited
Loading

⚠️ Maintainer Note: External SKILL Reference

This PR's SKILL.md redirects users to install the full version from Uniswap/uniswap-ai via npx skills add. The actual skill logic is maintained in Uniswap's own repository, not submitted here.

As Plugin Store maintainers, we are unable to review or audit the externally hosted SKILL source code and scripts through our standard AI review pipeline. Accordingly, we cannot independently verify the functionality or assess the trading risk of this plugin.

@MigOKG MigOKG merged commit ca3e6b7 into okx:main Apr 2, 2026
11 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

ai-reviewed new-plugin structure-validated

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@wkoutre @MigOKG