radius-dev

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill's SKILL.md explicitly instructs the agent to fetch live, public third‑party documentation from docs.radiustech.xyz (e.g., https://docs.radiustech.xyz/developer-resources/network-configuration.md and /llms-full.txt) to keep RPC endpoints, contract addresses, and configuration current, so untrusted remote content is ingested and can materially influence subsequent tool use and decisions.

MEDIUM W009: Direct money access capability detected (payment gateways, crypto, banking).

• Direct money access detected (high risk: 1.00). The skill is explicitly designed for blockchain financial operations: it documents wallet connection and transaction signing (viem createWalletClient, wagmi useSendTransaction), smart-contract deployment and sending transactions (Foundry forge, cast send), ERC‑20 operations, stablecoin-native fees and Turnstile conversions, micropayment/streaming payment patterns, x402 facilitator integration, Permit2 + EIP‑2612 signing flows, EIP‑7966 sync transaction APIs, and concrete RPC endpoints and token addresses. These are specific crypto/payment primitives that enable sending transactions and moving funds (not generic tooling), so it grants Direct Financial Execution capability.