migrator-uniswap-v2

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). This skill explicitly directs the agent to use and verify public GitHub sources (e.g., "Source References: Use Doppler deployments https://github.com/whetstoneresearch/doppler/tree/main/deployments" and the raw.githubusercontent.com Airlock.sol links in references/INTERFACE.md) as the contract source of truth and to trace/verify code from those public pages as part of the core workflow, meaning untrusted third‑party content would be ingested and could materially influence verification actions.

MEDIUM W009: Direct money access capability detected (payment gateways, crypto, banking).

• Direct money access detected (high risk: 1.00). The skill is explicitly about Uniswap V2 liquidity migration and references contract-level handoff calls (e.g., Airlock.migrate -> liquidityMigrator.migrate(...)), verification of balances sent to the migrator, and post-migration liquidity state. This is a crypto/blockchain financial operation (liquidity swaps/migrations) rather than a generic tool, so it constitutes direct financial execution capability.