crypto-tax-export

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill's documentation and reconciliation workflow explicitly require fetching public on-chain transaction history via Solana RPC/Helius and external price data from public APIs like Birdeye/CoinGecko (see "Prerequisites" and "Reconciliation" in SKILL.md and planned_features.md), which causes the agent to ingest untrusted third-party content that can directly affect classification, cost-basis calculations, and subsequent export actions.