testing

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill's fork-testing instructions explicitly create and run tests against a live mainnet fork (vm.createSelectFork("mainnet", ...) and forge test --fork-url https://eth-mainnet.g.alchemy.com/v2/YOUR_KEY), which ingests public, user-generated on-chain state from third-party RPC providers that can materially affect test behavior.

MEDIUM W009: Direct money access capability detected (payment gateways, crypto, banking).

• Direct money access detected (high risk: 1.00). The skill is explicitly about testing smart contracts that move value and includes concrete examples of executing on-chain transfers and swaps. It shows fork testing against mainnet addresses (Uniswap router, WETH, USDC) and calls ISwapRouter.exactInputSingle{value: 0.1 ether}(params) to perform a swap. These are specific crypto/blockchain transaction operations (swaps/transfers) — not generic automation or abstract API callers — so it provides direct financial execution capability.