create-aptos-project

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The skill's mandatory first step is to run "npx create-aptos-dapp", which fetches a public npm package and scaffolds boilerplate files that the agent is expected to read/execute (build, test, deploy), so untrusted third-party content from the npm registry can materially influence subsequent actions.

MEDIUM W009: Direct money access capability detected (payment gateways, crypto, banking).

• Direct money access detected (high risk: 1.00). The skill is explicitly tailored to Aptos blockchain development (scaffolding dApps, Move contracts) and references blockchain-specific tooling that enables transaction signing and deployment: aptos init, move:publish (deploy), a frontend with Aptos wallet adapter pre-configured, ts-sdk-transactions and ts-sdk-wallet-adapter, and flags for type-safe contract interactions. These are crypto/blockchain capabilities (wallets/signing/deploying contracts) rather than generic scaffolding, so it provides direct crypto execution-related functionality.