migrator-uniswap-v4

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The SKILL.md explicitly directs the agent to "Use Doppler deployments" on the public GitHub (e.g., raw.githubusercontent.com links in references/INTERFACE.md and OVERVIEW.md) as the contract source of truth, requiring the agent to fetch and interpret open, user-generated repository content that can materially affect verification decisions and next actions.

MEDIUM W009: Direct money access capability detected (payment gateways, crypto, banking).

• Direct money access detected (high risk: 1.00). The skill is explicitly about Uniswap V4 "migrator" functionality and references concrete smart‑contract entrypoints and calls (Airlock.migrate(asset), liquidityMigrator.migrate(...), UniswapV4MulticurveMigrator, UniswapV4MigratorSplit) and recipient/payout behaviors. This is a specific, crypto/blockchain financial operation (liquidity migration/payouts) rather than a generic tool. Under the core rule, that qualifies as direct financial execution capability.