pump-analyzer-solana

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill directly connects to Pump.fun's public WebSocket (wss://pumpportal.fun/api/data) and ingests untrusted, user-provided token fields (name, symbol, description, imageUri, uri) which the app parses and uses to trigger alerts/notifications and update subscriptions, so third-party content can materially influence behavior.

MEDIUM W009: Direct money access capability detected (payment gateways, crypto, banking).

• Direct money access detected (high risk: 1.00). The skill includes explicit Solana wallet integration (js/wallet.js) that detects Phantom/Solflare, calls provider.connect(), exposes the user's public key, and is explicitly designed to interact with the Solana RPC/on-chain subscription checks. Wallet adapters are a specific crypto/blockchain capability (wallets) listed in the rule for Direct Financial Execution. Even though the code shown does not include an explicit sendTransaction/signing call, the presence of a non-custodial wallet provider integration (Phantom/Solflare) is a specific crypto tool that enables transaction signing and on-chain actions and therefore meets the "Crypto/Blockchain (Wallets...)" criterion.