indigo-analytics

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The skill's workflows (e.g., sub-skills/tvl-stats.md and sub-skills/dex-yields.md) explicitly call tools like get_tvl and get_dex_yields that ingest data from public third-party sources (references/concepts.md names DefiLlama and DEX APIs such as Minswap and SundaeSwap), so the agent routinely reads external untrusted API/web data that can materially influence its recommendations.