skylens-transaction-analysis

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill directly queries the third-party Skylens API (skylens.certik.com) and its required workflow (SKILL.md and scripts/skylens.py) explicitly fetches and returns user-provided contract source files via list-source-files/get-source-file that the agent is expected to read and use to drive investigation, creating a clear vector for indirect prompt injection.