algo-trading

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The skill's SKILL.md explicitly fetches public market data from third-party sources (data_fetcher.py uses ccxt.binance() and yfinance, and it shows ccxt.pro watch_order_book streaming), and that untrusted external data is consumed by the strategy, backtester, and live-execution logic so it can materially influence decisions and tool use.

MEDIUM W009: Direct money access capability detected (payment gateways, crypto, banking).

• Direct money access detected (high risk: 1.00). The skill is explicitly designed for financial operations and live trade execution. It references connecting to exchange APIs (Binance, Alpaca, Interactive Brokers), uses ccxt/ccxt.pro, shows code calling exchange.create_order and exchange.fetch_ticker, and includes a place_order function that performs market/limit order checks and returns exchange.create_order. Examples and guidelines instruct deploying live trading bots, executing orders, and enforcing position/risk limits. These are specific tools/functions to send market orders and interact with trading/exchange APIs (crypto and traditional), so it provides Direct Financial Execution capability.