injective-trading-bridge

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 1.00). The skill's command templates explicitly include a plaintext "password" field and discuss using the wallet's private key for signing, which encourages asking for and embedding secrets verbatim in generated commands/requests (high exfiltration risk).

MEDIUM W009: Direct money access capability detected (payment gateways, crypto, banking).

• Direct money access detected (high risk: 1.00). The skill is explicitly designed to move crypto assets. It defines specific bridge/payment operations and transaction-executing commands (e.g., bridge_debridge_send, bridge_debridge_inbound_send, bridge_withdraw_to_eth), describes signing with an Injective wallet private key (and performing ERC20 approve + bridge transactions), and requires addresses, amounts, and passwords. These are concrete crypto transfer and signing capabilities (wallet/bridge transactions), not generic tooling — therefore it grants direct financial execution authority.