bingx-coinm-ws-market

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The skill's SKILL.md explicitly instructs the agent to connect to the public WebSocket endpoint wss://open-api-cswap-ws.bingx.com/market (see the connectCoinmWsMarket function and onmessage handling) and parse live market messages, so untrusted third‑party market data is ingested and can influence the agent's behavior.