bingx-agent

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill's SKILL.md instructs the agent to call BingX open API endpoints (e.g., /openApi/agent/v1/account/inviteAccountList, /openApi/agent/v1/asset/partnerData) and to read and report user-returned fields (remarks, referralCode, user data, commission info), which are untrusted/user-generated third‑party content that the agent is expected to interpret and that can materially affect subsequent reporting or actions.