cheetah-strategy

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill's runtime scanner directly fetches external market and social/leaderboard data (mcporter_call("market_get_asset_data") and mcporter_call("leaderboard_get_markets") in scripts/cheetah-scanner.py, and SKILL.md documents using SM positioning) and then interprets those untrusted public/user-generated signals to score entries and drive trading actions, so third-party content can materially influence behavior.

MEDIUM W009: Direct money access capability detected (payment gateways, crypto, banking).

• Direct money access detected (high risk: 1.00). The skill is explicitly a leveraged trading strategy for a crypto asset (HYPE). It defines position rules (maxPositions: 1), entry/exit logic, leverage tiers (7x–10x), DSL state files that control locking/stop behavior and ROE-triggered tiers, and scripts named for scanning and position management. The notifications and bootstrap behavior reference HYPE position OPENED or CLOSED. This is not a generic tool — its primary purpose is to open, manage, and close market positions (i.e., move capital / execute trades), so it provides direct financial execution capability.