ts-sdk-view-and-query

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). This skill's SKILL.md explicitly instructs the agent to call aptos.view(), getAccountResources(), getModule(), getBalance(), etc., which fetch public on-chain data from arbitrary account/module addresses (untrusted, user-controlled third‑party content) and the agent is expected to read and interpret those results as part of its workflow.