web3-growth

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill explicitly requires "Use community-management (manage Discord and Web3 community)" and describes workflows for Discord/Twitter/X moderation, AMAs, and responding to community-generated content, meaning the agent would ingest and act on untrusted, public user-generated content from third-party platforms (Discord/Twitter/marketplaces) that could influence decisions and tool use.

MEDIUM W009: Direct money access capability detected (payment gateways, crypto, banking).

• Direct money access detected (high risk: 1.00). The skill explicitly instructs implementing blockchain payment/transaction functionality: smart contract development with minting functionality, setting a mint price, connecting wallets (MetaMask, WalletConnect) in a minting DApp, and integrating with NFT marketplaces and royalty/payment settings. Those are specific crypto/blockchain transaction capabilities (wallets/signing and on-chain transfers/sales), which enable moving money/value. Therefore it contains direct financial execution capabilities.