liquidity-planner

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). This skill explicitly fetches and parses public third-party APIs (DexScreener and DefiLlama) as part of its required workflow (see Step 3 and Step 5 in SKILL.md and references/data-providers.md), and those external results are used to influence recommendations, fee-tier selection, and deep-link generation, creating a clear avenue for indirect prompt-injection from untrusted web content.

MEDIUM W009: Direct money access capability detected (payment gateways, crypto, banking).

• Direct money access detected (high risk: 1.00). This skill is specifically designed to create liquidity provider positions on Uniswap (v2/v3/v4). It gathers token addresses and deposit amounts, resolves pools and fee tiers, constructs Uniswap deep links that pre-fill depositState/fee/priceRange JSON, and even opens the URL in a browser to initiate the position-creation flow. While it doesn't itself sign or broadcast transactions, it explicitly facilitates on-chain crypto financial operations (providing liquidity / creating LP positions) and directly enables initiating money-moving actions via the Uniswap interface. This meets the criterion for crypto/blockchain financial capability.