bloque-sdk-ts

Warn

Audited by Snyk on May 20, 2026

Risk Level: MEDIUM
Full Analysis

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

  • Third-party content exposure detected (high risk: 0.90). The skill explicitly accepts and consumes untrusted external content—e.g., MCC whitelists may be supplied as URLs (references/cards-and-spending-controls.md) and webhook/movement metadata (references/webhooks.md, transfers.md) are ingested and used to drive routing/fee/transfer decisions—so third‑party data can materially influence agent actions and behavior.

MEDIUM W009: Direct money access capability detected (payment gateways, crypto, banking).

  • Direct money access detected (high risk: 1.00). The Bloque SDK skill is explicitly a fintech/programmable-payments SDK and exposes concrete money-moving APIs and primitives. The document repeatedly references direct financial operations and specific methods such as accounts.transfer, accounts.batchTransfer, swap.bankTransfer.create, swap.findRates (top-ups/bank transfers), creating pockets/wallets/cards tied to ledgerId for shared balances, Polygon wallet creation (crypto medium), and card create/freeze/update controls. It even mandates human confirmation before any money-moving or irreversible action. These are not generic tools — they are explicit payment/transfer, banking, and crypto wallet/swap operations capable of moving funds.

Issues (2)

W011
MEDIUM

Third-party content exposure detected (indirect prompt injection risk).

W009
MEDIUM

Direct money access capability detected (payment gateways, crypto, banking).

Audit Metadata
Risk Level
MEDIUM
Analyzed
May 20, 2026, 01:25 AM
Issues
2
Security Audit — snyk — bloque-sdk-ts