strategy-grid-trade

CRITICAL E005: Suspicious download URL detected in skill instructions.

• Suspicious download URL detected (high risk: 0.80). Multiple direct raw installer scripts (curl|sh) come from an apparently personal/unvetted GitHub repo (purong-huang-1121) alongside API/release checks and an internal doc link — the curl|sh pattern from an unknown account distributing binaries is a strong indicator of risk even though some links point to more legitimate projects (okx); this makes the set suspicious for potential malware or supply‑chain compromise.

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill directly fetches and parses public third‑party content (e.g., installs and update checks via curl to raw.githubusercontent.com and queries to https://api.github.com in Pre-flight Steps 1 and 3 and the Post-Install welcome) and uses that data to decide installs/updates and to drive behavior, so untrusted external content can influence actions.

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

• Potentially malicious external URL detected (high risk: 0.90). The skill explicitly runs runtime install commands that fetch and execute remote scripts the bot depends on (curl ... | sh), e.g. https://raw.githubusercontent.com/okx/onchainos-skills/main/install.sh, https://raw.githubusercontent.com/purong-huang-1121/plugin-store/main/install.sh, and https://raw.githubusercontent.com/purong-huang-1121/plugin-store/main/install_strategy.sh, so remote content is executed and required for operation.

MEDIUM W009: Direct money access capability detected (payment gateways, crypto, banking).

• Direct money access detected (high risk: 1.00). The skill is explicitly a crypto trading bot: it runs on Base, reads on-chain balances, uses onchainos wallet (TEE signing), and executes swaps via the OKX DEX aggregator. Commands like strategy-grid tick, strategy-grid start, and strategy-grid retry describe executing trades/swaps and re-sending failed transactions. This is a specifically designed financial execution tool (crypto trading/wallet transaction signing), not a generic interface.