blockchain-privacy

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill includes runtime code that reads public, third‑party blockchain and relayer data (e.g., provider.getGasPrice / privateProvider = new ethers.JsonRpcProvider("https://rpc.flashbots.net") in Encrypted Mempool Submission, fetchActiveRelayers()/getDepositsLast30Days()/selectRelayer() in the Private Relayer pattern, and IERC5564Announcer event metadata in the Stealth Address pattern), so it ingests open, user-generated on‑chain and relayer content that the agent would parse as part of its workflow.