okx-wallet-portfolio

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's Pre-flight Checks explicitly fetch and parse public GitHub release data and raw installer files (e.g., curl "https://api.github.com/repos/okx/onchainos-skills/releases/latest" and downloads from raw.githubusercontent.com / github.com/releases) and then uses those values to decide whether to download, verify, install, or block execution—i.e., untrusted third‑party content from the open web is ingested and directly drives tool actions.

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

• Potentially malicious external URL detected (high risk: 1.00). The skill's pre-flight checks fetch and execute a remote installer at runtime (e.g., curl -sSL "https://raw.githubusercontent.com/okx/onchainos-skills/${LATEST_TAG}/install.sh" -o /tmp/onchainos-install.sh" followed by "sh /tmp/onchainos-install.sh"), meaning it downloads remote code that is executed and is required for the skill to run.