grimoire-aave

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill explicitly fetches Aave V3 public market and reserve data via the Grimoire venue CLI (see SKILL.md "Fetches Aave V3 public market data" and the recommended preflight referencing an RPC URL) and uses a reserves-snapshot command to emit agent-consumed "params:" blocks, so untrusted on-chain/public metadata could influence agent actions.