TronScan Data Lookup

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill explicitly fetches public TRON blockchain data from the third‑party TronScan API (base URL apilist.tronscanapi.com in resources/api_config.json) via apiGet calls in scripts/*.js and utils.js, so it ingests untrusted, user-originated blockchain and contract metadata that the agent reads and can use to drive subsequent actions.