cardexscan-swap

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill's scripts (scripts/trending.js, scripts/estimate.js, scripts/build.js) call cardexscan-client functions (getTrendingTokens, estimateSwap, buildSwap) that fetch data from the external CardexScan API and the agent reads and acts on that third‑party/trending swap data to build transactions and choose routing, so untrusted public content could materially influence behavior.

MEDIUM W009: Direct money access capability detected (payment gateways, crypto, banking).

• Direct money access detected (high risk: 1.00). The skill is explicitly a DEX aggregator for crypto token swaps. It includes specific scripts to "Estimate Swap" and to "Build Swap Transaction" (taking token identifiers, amount, and a recipient bech32 address), requires a CARDEXSCAN_API_KEY, and returns multi-DEX routing/splits for execution. This is a purpose-built crypto swap/transaction tool — i.e., directly enables creating/sending blockchain swap transactions rather than being a generic interface.