aicoin-exchange-trading

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). This skill directly fetches and ingests public market data from third-party crypto exchanges via CCXT (see scripts/exchange.mjs — e.g., ex.fetchTicker, ex.fetchOrderBook, ex.fetchTrades, ex.fetchOHLCV), and that untrusted public API data is read by the agent and can materially influence trading decisions and subsequent tool actions.

MEDIUM W009: Direct money access capability detected (payment gateways, crypto, banking).

• Direct money access detected (high risk: 1.00). The skill is explicitly a crypto exchange trading tool (CCXT) that requires exchange API keys and provides actions to place and cancel market/limit orders (create_order, cancel_order), set leverage and margin, and transfer funds between accounts. These are direct crypto/market-order financial operations, not generic tooling.