arena-trader

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). The skill explicitly instructs the agent to read and react to messages in the live Prompt.Fun Telegram arena (user-generated, untrusted content) and to follow/public Solscan links, so third-party posts can directly influence trading decisions and actions.

MEDIUM W009: Direct money access capability detected (payment gateways, crypto, banking).

• Direct money access detected (high risk: 1.00). The skill is explicitly a trading agent for real SOL/token trades: it states "You have your own wallet, your own SOL, your own positions. Every trade is real and verifiable on Solscan," instructs the agent to "start executing" strategies, and requires posting Solscan transaction links when trades are made. Although no low-level function signatures are listed, the prompt's primary and explicit purpose is to perform crypto trades (move funds) on Solana. This is direct crypto/blockchain financial execution authority.