liquidity-planner

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's required workflow explicitly fetches and ingests public third‑party data (e.g., DexScreener in Step 2/Step 4, DefiLlama in Step 6, the PancakeSwap token list, and a WebSearch fallback) and uses those untrusted API/web results to drive pool selection, APY/IL assessments, and generation of deep links, so external content can materially influence the agent's decisions and actions.