custom-indicators

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill's runtime scripts (e.g., scripts/compute_crypto_indicators.py and scripts/holder_momentum.py) fetch live data from public third‑party APIs such as CoinGecko and DeFiLlama (see fetch_coingecko_coin/fetch_coingecko_market_chart and fetch_defillama_protocol), and those fetched JSON values are directly interpreted to compute signals and a composite score that can change downstream decisions.