sealevel-attacks-solana

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). Yes — SKILL.md explicitly directs cloning and building from the upstream public GitHub repository (https://github.com/coral-xyz/sealevel-attacks), meaning the agent is expected to fetch and read untrusted, user-generated third-party content that can materially influence analysis or subsequent actions.