@1458/dust-sweeper

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The skill's required workflow explicitly fetches public third‑party data (cg_token_price / CoinGecko, Odos and Jupiter swap/quote APIs, and referenced Etherscan token data) and the agent is expected to read those live prices/quotes/metadata to decide which tokens to sweep and to execute swaps, so untrusted external content can materially influence actions.

MEDIUM W009: Direct money access capability detected (payment gateways, crypto, banking).

• Direct money access detected (high risk: 1.00). This skill is explicitly designed to move crypto assets and execute on-chain swaps. It names and uses specific blockchain swap/aggregator APIs (Odos for EVM, Jupiter for Solana) and wallet operations: scanning balances, quoting prices, checking/setting allowances (odos_approve), executing swaps (odos_swap), signing and sending Solana transfers (wallet_sol_transfer), batching swaps, and reporting tx hashes. It also requires a wallet policy and can schedule recurring sweeps. These are direct financial execution actions (crypto/blockchain wallet management and asset transfers), not generic tools, so it meets the criteria for Direct Financial Execution.