antom-integration

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The SKILL.md explicitly instructs the agent to fetch and read external Antom product documentation via curl (e.g., https:///.md and linked CDN pages like https://cdn.marmot-cloud.com and https://www.antom.com/) as a required "Blocking Checkpoint" step, which means untrusted public web content would be ingested and could influence integration decisions and next actions.

MEDIUM W009: Direct money access capability detected (payment gateways, crypto, banking).

• Direct money access detected (high risk: 1.00). The skill is explicitly a payment-integration tool for the Antom payment gateway. It documents and guides use of payment APIs/SDKs (one-time payments, tokenized/recurring auto-debit, subscriptions) and API-only integration modes, and instructs on keys, signing, notifications, and transaction verification. These are specific financial execution capabilities (payment gateway integration and recurring payment APIs), not generic tooling.