fortytwo-mcp

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The skill's SKILL.md requires calling the external Fortytwo MCP gateway (https://mcp.fortytwo.network/mcp) and explicitly instructs the agent to "Show the full answer" from Fortytwo Prime, so untrusted third-party model output is ingested and can directly influence decisions and follow-up actions.

MEDIUM W009: Direct money access capability detected (payment gateways, crypto, banking).

• Direct money access detected (high risk: 1.00). The skill explicitly implements a paid gateway flow that requires on-chain payments: it demands a client wallet with USDC, an Ethereum private key for x402 payment signing, and step-by-step instructions to build and submit an EIP-712 payment signature (ReceiveWithAuthorization) against specified token contract addresses/networks. This is a specific crypto payment integration (signing and submitting authorization to move funds), not a generic API or browser automation, so it grants direct financial execution capability.