token-analysis-checklist

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). The skill explicitly instructs the agent to fetch and interpret data from open/public third-party sources—e.g., Solscan/Birdeye/Raydium URLs, pump.fun, Twitter, Telegram, and project websites—which are untrusted/user-generated and thus could carry indirect prompt injection.