build-trading-strategies

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill instructs the agent to browse and ingest public prediction market data (e.g., "browse-robonet-data" / get_prediction_market_data for Polymarket markets) and to fetch symbols/market data from external sources as part of its workflow, which are untrusted public third‑party inputs that could carry indirect prompt injection.

MEDIUM W009: Direct money access capability detected (payment gateways, crypto, banking).

• Direct money access detected (high risk: 1.00). The skill is explicitly designed for financial operations: it generates crypto trading strategies (create_strategy) that include go_long/go_short methods which "place buy/sell order" and "execute long/short entry with position sizing" and prediction-market strategies (create_prediction_market_strategy) with go_yes/go_no methods that "execute YES/NO token purchase." These are specific mechanisms to send transactions and manage positions (order placement, sizing, stop loss/take profit), not generic tooling. Therefore it grants direct financial execution capability.