use-smart-contract-platform

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's workflows (e.g., importContract/getContract and queryContract in SKILL.md and references/interact.md, plus getEventHistory and webhook-based monitoring in references/monitor-events.md) fetch and parse ABI, contract metadata, event logs, and webhook payloads from arbitrary public blockchain addresses and webhooks—untrusted third‑party content that the agent is expected to read and that can materially influence subsequent contract calls and actions.

MEDIUM W009: Direct money access capability detected (payment gateways, crypto, banking).

• Direct money access detected (high risk: 1.00). The skill is explicitly for deploying and interacting with smart contracts and includes a Developer-Controlled Wallets SDK for write transactions. It documents creating execution transactions via walletsClient.createContractExecutionTransaction(), handling payable/write functions, managing wallets with gas funds, token templates (ERC-20/ERC-721/ERC-1155), airdrops, and transaction lifecycle polling (SENT/CONFIRMED/COMPLETE). Those are specific crypto/blockchain wallet and transaction APIs able to move value and sign/send transactions—i.e., direct financial execution capability.