strategy-framework

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The SKILL.md explicitly instructs using public third‑party data sources (e.g., "Data source: e.g., Birdeye API, DexScreener") and implementation guidance to "Monitor wallets via Helius webhooks or polling" under the "Copy Trading / Wallet Following" section, which requires ingesting and acting on untrusted, user-generated on‑chain and web data as part of strategy signals and execution.