use-usdc

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The skill's verify workflows (references/evm.md "Verify Incoming Transfer" using publicClient.getContractEvents and references/solana.md "Verify Incoming Transfer" using rpc.getSignaturesForAddress) explicitly fetch and interpret public on‑chain, user-generated transaction data via public RPCs to drive verification and follow-up actions, exposing the agent to untrusted third‑party content that could carry indirect prompt injection.

MEDIUM W009: Direct money access capability detected (payment gateways, crypto, banking).

• Direct money access detected (high risk: 1.00). The skill is explicitly built for USDC (Circle stablecoin) operations across EVM and Solana and includes write capabilities to move funds: "send transfers", "approve spending", "Send USDC", "Approve contract to spend USDC", EVM transfer/approve patterns and Solana getTransferInstruction/sendAndConfirmTransactionFactory. It references private key handling, chain-specific contract addresses, and concrete transfer/approval functions—i.e., it provides the exact primitives to sign and submit on-chain transactions. This is a specific financial execution capability (crypto wallet/transaction execution), not a generic tool, so it meets the Direct Financial Execution criteria.