bloque-sdk-ts
Warn
Audited by Snyk on May 20, 2026
Risk Level: MEDIUM
Full Analysis
MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).
- Third-party content exposure detected (high risk: 0.90). The skill explicitly accepts and consumes untrusted external content—e.g., MCC whitelists may be supplied as URLs (references/cards-and-spending-controls.md) and webhook/movement metadata (references/webhooks.md, transfers.md) are ingested and used to drive routing/fee/transfer decisions—so third‑party data can materially influence agent actions and behavior.
MEDIUM W009: Direct money access capability detected (payment gateways, crypto, banking).
- Direct money access detected (high risk: 1.00). The Bloque SDK skill is explicitly a fintech/programmable-payments SDK and exposes concrete money-moving APIs and primitives. The document repeatedly references direct financial operations and specific methods such as accounts.transfer, accounts.batchTransfer, swap.bankTransfer.create, swap.findRates (top-ups/bank transfers), creating pockets/wallets/cards tied to ledgerId for shared balances, Polygon wallet creation (crypto medium), and card create/freeze/update controls. It even mandates human confirmation before any money-moving or irreversible action. These are not generic tools — they are explicit payment/transfer, banking, and crypto wallet/swap operations capable of moving funds.
Issues (2)
W011
MEDIUMThird-party content exposure detected (indirect prompt injection risk).
W009
MEDIUMDirect money access capability detected (payment gateways, crypto, banking).
Audit Metadata