grimoire-morpho-blue

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill explicitly fetches Morpho Blue public deployment metadata and vault snapshots (via the grimoire venue morpho-blue commands, especially vaults/vaults-snapshot using a public RPC or registry), and the agent is expected to consume those snapshots/params (including market_id, apy, tvl) to decide and author actions—so untrusted public on-chain/deployment data can materially influence behavior.

MEDIUM W009: Direct money access capability detected (payment gateways, crypto, banking).

• Direct money access detected (high risk: 1.00). The skill is explicitly for interacting with the Morpho Blue DeFi venue and defines value-moving blockchain actions (lend, withdraw, borrow, repay, supply_collateral, withdraw_collateral, vault_deposit, vault_withdraw). It requires explicit market/vault IDs and shows concrete transaction commands and workflows (e.g., morpho_blue.lend(...), morpho_blue.borrow(...), vault_deposit(...)). These are specific crypto/blockchain financial execution operations (not generic tooling) that can move assets onchain, so it grants direct financial execution authority.