bitmart-wallet-ai

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill's SKILL.md explicitly instructs the agent to call public BitMart API endpoints (https://api-cloud.bitmart.com — e.g., token-search, token-info, hot-ranking, smart-money-info, address-recent) and to parse their responses as part of the mandatory token-resolution and query workflows, so it ingests untrusted third‑party public data (token metadata, wallet holdings/transactions, rankings) that can materially influence subsequent tool calls and decisions.