solscan-data

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill makes live requests to the public Solscan Pro API (https://pro-api.solscan.io) as shown in SKILL.md and scripts/solscan.py (endpoints like /nft/news, /account/metadata, /token/trending, etc.), which returns public/user-generated blockchain metadata and feeds that the agent is instructed to read and use in workflows (e.g., "account metadata" and "nft news"), so untrusted third-party content can materially influence agent decisions.