trading-on-aborean

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill explicitly instructs the agent to fetch and interpret live public content from third-party sites (e.g., DexScreener API at api.dexscreener.com, Abscan verified source at abscan.org, and aborean.finance docs/front-end) as required steps in pool discovery and ABI/entrypoint selection, and those external pages can materially change contract selection and execution decisions.

MEDIUM W009: Direct money access capability detected (payment gateways, crypto, banking).

• Direct money access detected (high risk: 1.00). The skill is explicitly designed for blockchain financial operations. It constructs and previews contract writes (agw contract write --dry-run), prepares swaps, LP deposits, zaps, veABX locks, gauge votes, vault actions, claims, and uses wallet commands (agw wallet balances, tokens list) and onchain discovery (getPool, router entrypoints, Abscan verified write methods). These are direct crypto transaction and wallet actions (signing/sending contract transactions), not generic tooling. Therefore it grants direct financial execution capability.