ika-cli

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill explicitly fetches public address.yaml from GitHub during ika config init and ika config sync, and those externally-hosted files are parsed to build/update Ika network configs and RPC endpoints that directly affect subsequent tool behavior.

MEDIUM W009: Direct money access capability detected (payment gateways, crypto, banking).

• Direct money access detected (high risk: 1.00). The skill is a CLI specifically for dWallet (decentralized wallet) operations on the Sui blockchain and for MPC signing. It explicitly exposes commands to create/import dWallets, manage secret shares, register encryption keys, request signatures (sign, presign, future-sign), extract public keys, and notes that IKA/SUI coins are auto-detected from the active wallet. These are explicit crypto/wallet signing and key-management capabilities (not generic tooling), which enable signing and thus direct execution of blockchain transactions and movement of crypto funds. Therefore it meets the "Crypto/Blockchain (Wallets, Swaps, Signing)" criterion for Direct Financial Execution.