nansen-wallet-attribution

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). SKILL.md (steps 1–3 and 7) explicitly instructs the agent to run "nansen research profiler" commands (labels, related-wallets, counterparties, trace) that fetch public third-party data from Nansen/blockchain-derived sources which the agent must read and which directly influence follow-up queries and tracing decisions.