cyclops

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The SKILL.md shows the Cyclops API ingests and returns data from public third-party sources (explicitly listing Helius and Etherscan under "integrates multiple data sources" and the Base URL https://cyclops-api.daemonprotocol.com), and the agent is expected to read and act on fields like data.sanctions, data.labels, and data.graph as part of its workflow—meaning untrusted/public content can influence decisions.