basket-query

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The SKILL.md shows the agent calling public mainnet on-chain contracts via vara-wallet (e.g., BasketMarket/GetBasket, GetSettlement, BetToken/BalanceOf, BetLane/GetPositions) to read fields like basket name/description, item_resolutions and other on-chain state, which are public, user-generated/untrusted content the agent is expected to parse and that can materially influence subsequent decisions.