tracking-crypto-derivatives

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). The skill explicitly fetches and ingests live data from public third‑party sources (e.g., Exchange APIs like Binance/Bybit/OKX/Deribit/BitMEX, Coinglass, The Graph) via the ExchangeClient and CLI workflows (SKILL.md, ARD.md, scripts/*.py), and that external data is parsed and used to drive analysis, alerts, arbitrage and trading decisions—so untrusted third‑party content can materially influence the agent's actions.