app-store-price-index

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill instructs the agent to fetch and parse public, third‑party data (e.g., GET https://itunes.apple.com/lookup?id={app_id}&country={territory_code} and public PPP data from the World Bank/Numbeo) and to read and interpret those responses as part of its pricing/index workflows, which exposes it to untrusted external content that could contain manipulated/user-provided fields.

MEDIUM W009: Direct money access capability detected (payment gateways, crypto, banking).

• Direct money access detected (high risk: 1.00). The skill explicitly includes write-capable App Store Connect API operations to change pricing (e.g., POST /v1/subscriptionPrices, POST /v1/inAppPurchasePriceSchedules), describes JWT auth and scheduling, and instructs automating price updates. Those are specific, non-generic APIs to modify monetary settings (app subscription and IAP prices) rather than mere read-only analysis. Because it provides explicit endpoints and workflows to apply price changes (i.e., directly alter revenue-affecting settings), it constitutes direct financial execution authority in the domain of app pricing.