okx-cex-smartmoney

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill explicitly uses the OKX public smartmoney API via the okx CLI (see SKILL.md and references/*, e.g., smartmoney traders/signal/trader commands) to fetch user-generated trader profiles, positions, and trade records from OKX, which the agent reads and uses to make recommendations and follow-up tool calls—exposing it to untrusted third-party content that could embed instructions.