@1826/nigeria-p2p-arb

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill explicitly fetches and ingests public, user-generated Binance P2P ads via the Binance P2P API and performs web_search against public sites (e.g., cbn.gov.ng, sec.gov.ng, techcabal.com, nairametrics.com) — these untrusted third-party sources are read and interpreted as part of the required workflow to compute arbitrage opportunities and guide trade actions, creating a clear vector for indirect prompt injection.