@1247/trade-simulator

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's SKILL.md and usage workflow explicitly state it "build[s] market state graph from live data" and list third‑party live sources (e.g., Coinglass/Hyperliquid social sentiment via lunar_coin), and that graph_context (built from that live data) is fed into LLM-driven profile generation, simulation reasoning, report generation and interviews (see mirofish_engine and profile_generator), so arbitrary public/web/user‑generated content can influence agent behavior and tools.