flare-fdc

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). The skill's workflow explicitly instructs fetching and ingesting untrusted public Web2 content and DA Layer proof responses (e.g., Web2Json via VERIFIER_URL/verifier/.../prepareRequest and DA Layer POST .../api/v1/fdc/proof-by-request-round-raw), and those external responses are decoded and used to drive verification and on-chain/business logic, so third-party content could influence agent actions.