monitoring-whale-activity

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill's runtime workflow (SKILL.md, ARD.md and scripts/whale_api.py, scripts/price_service.py) fetches live data from public third‑party APIs such as Whale Alert (https://api.whale-alert.io), CoinGecko (https://api.coingecko.com) and Etherscan and then interprets that data to label transactions, compute inflows/outflows and drive alerts, so untrusted external content can materially influence agent decisions.