skills/bankrbot/skills/aeon-monitor-runners/Snyk

aeon-monitor-runners

Warn

Audited by Snyk on May 18, 2026

Risk Level: MEDIUM

Full Analysis

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

Third-party content exposure detected (high risk: 0.90). The skill explicitly fetches market data from the public GeckoTerminal API endpoints (e.g., https://api.geckoterminal.com/... in SKILL.md) and uses that untrusted third‑party content to drive selection, risk flags, and trading/rotation signals, so external data can materially influence the agent's decisions.

Issues (1)

W011

MEDIUM

Third-party content exposure detected (indirect prompt injection risk).

Audit Metadata

Risk Level

MEDIUM

Analyzed

May 18, 2026, 01:10 PM

Issues

1

Security Audit — snyk — aeon-monitor-runners