binance-token-info

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The skill's SKILL.md shows it calls Binance's public APIs (e.g., API 2 — Token Metadata at https://web3.binance.com/...), which return project descriptions and social links (user-provided/untrusted third-party content) that the agent is expected to read and include in responses, enabling potential indirect prompt injection via that content.