viem

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). The skill includes explicit runtime steps to read public, untrusted Celo blockchain data (e.g., using publicClient.readContract against the FeeCurrencyDirectory contract and querying nodes like https://forno.celo.org) whose results (fee currencies/adapters) directly influence transaction construction and subsequent actions.

MEDIUM W009: Direct money access capability detected (payment gateways, crypto, banking).

• Direct money access detected (high risk: 1.00). The skill is explicitly designed for blockchain financial operations. It documents wallet client setup, transaction signing/serialization, and direct transaction-sending APIs (e.g., walletClient.sendTransaction, walletClient.writeContract, serializeTransaction, feeCurrency support and adapters). These functions enable creating and broadcasting on-chain transfers and paying gas in alternative tokens, which are direct crypto financial execution capabilities.