polymarket-portfolio

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill's required workflow fetches and parses live JSON from public Polymarket endpoints (e.g., https://data-api.polymarket.com/positions, /trades, /activity, /v1/closed-positions) and uses user-generated fields like market titles/outcomes to compute summaries and PnL, so untrusted third-party content can influence the agent's interpretation and subsequent actions.