okx-cex-trade

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). The skill's required workflows explicitly instruct the agent to fetch and interpret live public OKX data (e.g., "okx event markets", "okx option greeks", "okx market index-candles" in SKILL.md and references/event-workflows.md) and use that content to drive trading decisions and follow-up tool actions, exposing the agent to untrusted third-party runtime content that could embed instructions.

MEDIUM W009: Direct money access capability detected (payment gateways, crypto, banking).

• Direct money access detected (high risk: 1.00). The skill is explicitly a trading CLI for OKX CEX and is specifically designed to place, amend, cancel, and manage market/limit orders across spot, swap/perpetual, futures, options, and event contracts. It requires API credentials and includes WRITE commands like spot place, swap place, futures place, option place, event place, swap/futures close, and leverage adjustments — all of which perform actual market orders or change positions/funds. This is a direct financial execution tool (not a generic API caller or browser automation).