dune-analytics

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The skill's SKILL.md instructs the agent to call the public Dune REST API (https://api.dune.com/api/v1) to execute saved queries and fetch query definitions/results (community/user-created datasets), which the agent is expected to read and could materially influence follow-up analysis or actions (e.g., MoonPay-driven operations).

MEDIUM W009: Direct money access capability detected (payment gateways, crypto, banking).

• Direct money access detected (high risk: 1.00). The skill explicitly pairs on-chain analytics (Dune) with MoonPay CLI commands that create and fund wallets and move crypto. The documentation shows concrete MoonPay operations such as mp wallet create, mp buy --token ... --amount ... --wallet ..., mp token bridge, and references related skills for swapping and bridging tokens. These are specific crypto financial-execution actions (wallet creation/funding, buying tokens, cross-chain transfers), not generic tooling. Therefore it grants direct financial execution capability.