grimoire-uniswap

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). This skill ingests token and pool metadata from public third-party sources (The Graph subgraphs and on-chain RPC/endpoints specified via --graph-key/--subgraph-id/--endpoint/--rpc-url or --source) as part of its normal tokens/pools workflow in SKILL.md, so untrusted user-generated subgraph or URL content can influence generated spell params and subsequent actions.