polyflup-history

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill explicitly ingests public Polymarket orderbook probabilities as a Bayesian prior ("Market Prior Integration") and uses a WebSocketManager for real-time prices/user updates, i.e., it reads and interprets untrusted, user-generated market data from third-party sources.

MEDIUM W009: Direct money access capability detected (payment gateways, crypto, banking).

• Direct money access detected (high risk: 1.00). The skill log documents a trading system (PolyFlup) with explicit order management and exchange interactions: scale-in and exit orders, real-time exit validation, order repair and reconciliation, balance API, minimum share thresholds, smart exit pricing, WebSocket price/user updates, and explicit references to Polymarket trading (market priors, maker/taker fees). These are concrete, purpose-built financial/trading operations (placing and managing market orders and balances), not generic tooling. Therefore it grants direct financial execution capability.