dapp-development

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill explicitly instructs the agent to ingest and act on public, third‑party content — e.g., the references/resources.md describes adding a VeChain MCP server (docs + blockchain queries), the useIpfsImage/useNFTImage hooks and delegatorUrl fields (references/frontend-dappkit.md and frontend-vechain-kit.md) fetch arbitrary IPFS/docs/delegator endpoints and contract/indexer data that the agent is expected to read and which can influence transaction/tooling decisions.

MEDIUM W009: Direct money access capability detected (payment gateways, crypto, banking).

• Direct money access detected (high risk: 1.00). The skill is explicitly for VeChain dApp development and includes direct blockchain transaction capabilities: wallet connection, transaction building and sending, hooks like useSendTransaction/useCallClause, fee/gas handling, signing, token transfers (VET/VTHO), and SDKs (@vechain/vechain-kit, @vechain/sdk-core). These are specific crypto/blockchain execution tools (wallets, signing, sending transactions), so it grants Direct Financial Execution authority.