parallel-cli-setup

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). The SKILL.md explicitly enables and recommends running web searches and URL extracts (e.g., Step 5's /parallel:parallel-web-extract and /parallel:parallel-web-search), which will fetch and interpret arbitrary public web pages and user-provided URLs, exposing the agent to untrusted third-party content that could contain indirect prompt injections.

MEDIUM W009: Direct money access capability detected (payment gateways, crypto, banking).

• Direct money access detected (high risk: 1.00). The skill includes explicit CLI commands to check and modify monetary balance (e.g., "parallel-cli balance get" and "parallel-cli balance add <AMOUNT_IN_CENTS>") and instructs the user to add payment methods. This is a specific, built-in financial operation (adding funds) rather than a generic tool, so it grants direct financial execution capability.