whale-tracking

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill clearly ingests live, public third-party data—Polymarket WebSocket trades and on-chain transactions via Birdeye/Alchemy (see SKILL.md feeds and index.ts calls like createWhaleTracker with enableRealtime, getMarketWhaleActivity, getRecentTrades, and cryptoTracker.getRecentTransactions/getWallet)—which are untrusted user-generated/public content that the agent reads and uses to drive alerts, tracking, and actions.