web3-trade-simulator

CRITICAL E005: Suspicious download URL detected in skill instructions.

• Suspicious download URL detected (high risk: 0.90). This is a direct raw GitHub link to an install.sh shell script (intended to be run via curl | sh); even though it's hosted under the "okx" GitHub account (which looks legitimate), executing remote shell scripts without reviewing their contents or verifying the repo/signature is high risk because such scripts can install malware or backdoors.

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill explicitly calls the onchainos CLI to fetch public on‑chain and market data (e.g., onchainos token search, token price-info, token holders, market kline, market signal-list, swap quote) and the agent reads and acts on those untrusted public data sources to compute scores and drive simulated trade decisions, so third‑party content can materially influence behavior.

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

• Potentially malicious external URL detected (high risk: 0.90). The skill's prerequisites include an install command that fetches and pipes remote code to the shell (https://raw.githubusercontent.com/okx/onchainos-skills/main/install.sh), which would execute remote code and is a required dependency for the onchainos CLI the skill relies on.