solidity-hardhat-development

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill's workflow explicitly requires connecting to remote RPC endpoints (e.g., configVariable("MAINNET_RPC_URL") and network.connect("mainnet") with mainnet.provider.getBlockNumber()) and uses public verification services (npx hardhat verify), which fetch and require interpreting data from open third-party sources (public RPC nodes/Etherscan) that could materially influence actions.

MEDIUM W009: Direct money access capability detected (payment gateways, crypto, banking).

• Direct money access detected (high risk: 1.00). The skill is explicitly for Solidity/Hardhat development and includes concrete blockchain transaction and deployment capabilities: Hardhat Ignition deployment commands (npx hardhat ignition deploy ... --network), network configuration for mainnet with RPC URLs, network.connect("mainnet"), and references to a hardhat-keystore plugin. These are specific crypto/blockchain tools that enable sending transactions, signing/deploying contracts, and interacting with mainnet RPCs (i.e., executing on-chain operations). This qualifies as direct financial execution capability.