token-integration-analyzer

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill explicitly queries arbitrary public blockchain data when given a contract address and RPC endpoint (see "If you provide a contract address, I'll query" and the web3/ethers.js examples), so it will ingest untrusted, user-provided on-chain metadata (names/symbols/holder lists/exchange listings) that could contain malicious or injected content.