query-onchain-data

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The SKILL.md explicitly instructs the agent to execute queries against the public CDP SQL API (via npx awal x402 POST to https://x402.cdp.coinbase.com/platform/v2/data/query/run) to fetch decoded onchain events/transactions (public, user-generated blockchain data) which the agent is expected to read and could materially influence subsequent analysis or actions.