dexscreener-openapi-skill

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The skill's Core Workflow and SKILL.md explicitly direct the agent to query and ingest live JSON from the public DexScreener API (https://api.dexscreener.com) and use a curated OpenAPI schema URL (https://raw.githubusercontent.com/...), which returns untrusted, user/market-generated fields (e.g., description, links, header) that the agent is expected to read and that could materially influence subsequent tool use or decisions.