tracking-crypto-prices

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). This skill explicitly fetches and ingests data from public third‑party APIs (CoinGecko and yfinance) — documented in SKILL.md/ARD.md and implemented in scripts/api_client.py — and the agent reads and acts on that external JSON/market data (including coin names/fields) to drive caching, fallbacks, formatting, and downstream decisions, so untrusted third‑party content can materially influence behavior.