stake-game-developer

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's required workflow and references (e.g., references/stake-engine-replay.md and references/game-approval-checklist.md) explicitly require auto-fetching replay/event data from a dynamic rgs_url (GET {rgs_url}/bet/replay/...), treating that event stream as the single source-of-truth and using it to drive UI/behavior, which means the agent would ingest untrusted, user-supplied third-party content that can materially influence actions.