hyperliquid-grid-trading-bot

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill explicitly connects to the public Hyperliquid DEX and ingests real-time market data (see the Hyperliquid link and learning_examples/01_websockets/realtime_prices.py and the config option grid.price_range.mode: "auto" which computes ranges from the current price), so untrusted third-party price feeds are read and directly influence trading decisions and actions.

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

• Potentially malicious external URL detected (high risk: 0.80). The skill's installation instructs fetching and running code from the external repository https://github.com/PolyPulse-Analytics/hyperliquid-trading-bot.git (git clone then npm start / npx tsx), so remote code from that URL is required and will be executed at runtime.

MEDIUM W009: Direct money access capability detected (payment gateways, crypto, banking).

• Direct money access detected (high risk: 1.00). The skill is explicitly a crypto trading bot for the Hyperliquid DEX: it requires wallet private keys, runs on testnet/mainnet, and places layered buy/sell orders, stop-loss/take-profit, rebalancing and order cancellation. The docs include example scripts to place limit orders and run the bot (i.e., sign and send on-chain/exchange transactions). This is a specific financial execution tool (crypto trading/wallet transaction capability), not a generic utility.