software-crypto-web3

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). The SKILL's "Trend Awareness Protocol" explicitly requires the agent to perform WebSearch (listed required searches) and use fresh public web content to form recommendations, meaning the agent will fetch and interpret untrusted third‑party web pages that can materially influence its actions.

MEDIUM W009: Direct money access capability detected (payment gateways, crypto, banking).

• Direct money access detected (high risk: 1.00). The skill is explicitly focused on blockchain financial operations: it includes custody and signing (HSM/MPC), wallet management (custodial vs non-custodial), webhook handling and signature validation for custodial providers (e.g., Fireblocks), transaction lifecycle management, smart-wallet/account-abstraction code that performs/onboards transactions (examples include withdraw/send patterns and validateUserOp with value transfers). These are specific crypto/transaction execution capabilities (wallets, signing, custody) rather than generic tools, so it grants direct financial execution authority.