nansen-dca-watch

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's workflow (SKILL.md) directly runs "nansen research" commands to fetch public on-chain analytics and token info (e.g., nansen research smart-money dcas, nansen research token info, token flow-intelligence), meaning the agent ingests untrusted third-party web/API content and uses it to drive decisions about token targets.