nostr-wot

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill calls public third‑party APIs (https://wot.klabo.world via freeGet and https://maximumsats.com/api/wot-report via paidWotReport) and directly ingests their JSON responses (e.g., report, classification, rank) which are used by cmdTrustScore/cmdSybilCheck/cmdNeighbors to make trust and action decisions, exposing the agent to untrusted third‑party content that can influence behavior.

MEDIUM W009: Direct money access capability detected (payment gateways, crypto, banking).

• Direct money access detected (high risk: 1.00). The skill explicitly integrates a paid fallback that charges 100 sats via L402 (Lightning/BOLT11). It auto-falls back to a paid endpoint and requires a Lightning client to pay the invoice (or it returns a BOLT11 invoice). This is a specific crypto/payment integration (Lightning invoice payment) rather than a generic API caller or browser automation, so it enables direct financial execution when a Lightning client is available.