stablecoin-depeg-monitor

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill explicitly fetches and ingests public third-party data from Barker's public API (GET https://api.barker.money/api/public/v1/market/overview) as a required part of its workflow and uses those returned fields to determine peg status and drive guidance, so untrusted external content can materially influence agent decisions.

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

• Potentially malicious external URL detected (high risk: 0.80). The pre-flight script performs a runtime curl to https://raw.githubusercontent.com/okx/plugin-store/main/skills/stablecoin-depeg-monitor/plugin.yaml and, if a newer version is detected, runs an npx install command that can fetch and execute remote code, so this URL is used at runtime and can lead to executing external code.