nansen-defi-exposure

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The SKILL.md explicitly runs public Nansen Research queries (e.g., "nansen research portfolio defi --wallet $ADDR" and "nansen research profiler balance --address ...") that fetch public, user-linked on-chain data which the agent ingests and uses to determine exposures, so untrusted third‑party content can influence its behavior.