debridge

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). The skill's TypeScript examples and workflow in SKILL.md explicitly fetch and parse public on-chain data (e.g., Connection('https://api.mainnet-beta.solana.com'), connection.getAccountInfo, getLatestBlockhash) and accept/encode arbitrary external_call/calldata from users (examples/buildCustomCalldata, external-calls), so untrusted public blockchain content and user-provided call data are read and can materially change decisions and actions (fee selection, whether to send, and what external call to execute).

MEDIUM W009: Direct money access capability detected (payment gateways, crypto, banking).

• Direct money access detected (high risk: 1.00). The skill is a dedicated SDK for deBridge cross-chain transfers and explicitly provides functions and APIs to move tokens and value: e.g., debridge_sending::invoke_debridge_send, invoke_debridge_send_signed (PDA-signed transfers), send_tokens, send_with_asset_fee, send_exact_amount, get_chain_native_fix_fee, add_all_fees, and TypeScript client code to build and submit send transactions. It also describes bridging assets between Solana and EVM chains, fee payment methods, and executing external smart-contract calls on destination chains. These are specific crypto/blockchain financial execution operations (wallet/transfer/bridging), not generic utilities.