finding-arbitrage-opportunities

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The skill explicitly fetches live data from public third‑party APIs (e.g., CoinGecko in SKILL.md and config/settings.yaml, The Graph DEX subgraphs in config/settings.yaml, and direct exchange APIs referenced in price_fetcher.py) and the agent ingests and acts on that data as part of its core workflow (see scripts/price_fetcher.py and scripts/opportunity_scanner.py), so untrusted external content can materially influence decisions and alerts.

MEDIUM W009: Direct money access capability detected (payment gateways, crypto, banking).

• Direct money access detected (high risk: 1.00). This skill is specifically designed for cryptocurrency trading/arbitrage (a financial operation). It explicitly references exchange API keys and a trading-focused library (CCXT), aggregates real-time order book prices, computes net profit after fees (including withdrawal/gas/bridge costs), produces buy/sell recommendations, and includes monitoring and a profit calculator targeted at executing trades across CEX/DEX and cross-chain. Those elements (exchange API keys + CCXT + market/order-book focused outputs and actionable recommendations) constitute explicit crypto trading capabilities that enable direct financial execution.