wallet-monitoring-bot

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill consumes public on-chain data from third-party sources (Helius webhooks and RPC/WebSocket polling via getSignaturesForAddress/getParsedTransaction) and parses token metadata/descriptions and transaction fields (public, untrusted content) as part of its workflow, which could carry injected text interpreted by the agent.