Skills
skills/agiprolabs/claude-trading-skills/slippage-modeling/Snyk

slippage-modeling

Warn

Audited by Snyk on Mar 21, 2026

Risk Level: MEDIUM
Full Analysis

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

  • Third-party content exposure detected (high risk: 0.80). The skill explicitly queries a public third‑party API (JUPITER_QUOTE_URL "https://quote-api.jup.ag/v6/quote") in scripts/slippage_curve.py and scripts/execution_cost.py and uses the returned quotes/routePlan data to compute prices, slippage, and execution decisions, so live untrusted external content directly influences the agent's workflow and outputs.

Issues (1)

W011
MEDIUM

Third-party content exposure detected (indirect prompt injection risk).

Audit Metadata
Risk Level
MEDIUM
Analyzed
Mar 21, 2026, 02:36 PM
Issues
1