farming-planner

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). This skill fetches and ingests live data from public third‑party APIs (e.g., explorer.pancakeswap.com, infinity.pancakeswap.com, api.coingecko.com, api.dexscreener.com, configs.pancakeswap.com) as required by the Farm Discovery and Syrup Pool scripts in SKILL.md, and uses that untrusted data to compute APRs, select/top farms, and build actionable deep links that materially influence recommendations and next actions.

MEDIUM W009: Direct money access capability detected (payment gateways, crypto, banking).

• Direct money access detected (high risk: 1.00). The skill explicitly includes on-chain transaction commands and contract interactions (e.g., cast send approve/deposit/withdraw/harvest/safeTransferFrom/claim, CLI examples for staking/unstaking/harvesting, Distributor Merkle claim flow, and cast send usage). Those are concrete, specific crypto/blockchain execution instructions (wallet signing/transaction submission), not generic tooling. Therefore it grants direct financial execution capability.