tenero

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill's CLI (tenero.ts) explicitly fetches data from the public Tenero API at https://api.tenero.io (via fetchTenero), and the agent workflow/AGENT.md directly uses returned fields (e.g., passing contract_id or wallet from API responses into subsequent commands) so untrusted third‑party response content can influence tool calls and decision logic.