euler-earn

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). This skill instructs the agent to query and interpret live, public third‑party data (e.g., factory.read.getVaultListSlice, vaultLens.getVaultInfoDynamic, publicAllocator.read.flowCaps and external docs/GitHub links) so it would consume untrusted on‑chain and web content as part of its workflow.

MEDIUM W009: Direct money access capability detected (payment gateways, crypto, banking).

• Direct money access detected (high risk: 1.00). The skill is explicitly for a DeFi yield-aggregation product (EulerEarn) and describes actions that move on-chain assets: deploying yield vaults, managing strategy allocations, supply/withdraw queues, and using a PublicAllocator for permissionless reallocation. Those capabilities are specifically designed to perform crypto financial operations (reallocating funds, changing allocations), not generic tooling, so it qualifies as direct financial execution authority.