okx-dex-market
Warn
Audited by Snyk on May 11, 2026
Risk Level: MEDIUM
Full Analysis
MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).
- Third-party content exposure detected (high risk: 0.90). The skill explicitly fetches public third-party content (e.g., GitHub API/raw URLs in _shared/preflight.md and market API/WebSocket responses including notifications[] in _shared/payment-notifications.md) and instructs the agent to parse and act on that untrusted data (e.g., render paymentOptions and run onchainos payment default set / rerun commands), so external content can materially influence tool use and next actions.
MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).
- Potentially malicious external URL detected (high risk: 1.00). The preflight procedure fetches and executes remote installer code at runtime (e.g. curl ... "https://raw.githubusercontent.com/okx/onchainos-skills/${LATEST_TAG}/install.sh" → sh /tmp/onchainos-install.sh), so the skill relies on and runs externally fetched code.
Issues (2)
W011
MEDIUMThird-party content exposure detected (indirect prompt injection risk).
W012
MEDIUMUnverifiable external dependency detected (runtime URL that controls agent).
Audit Metadata