pionex-earn-dual

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill's mandatory workflows call Pionex's public APIs (e.g., pionex-trade-cli earn dual open_products, prices, index, delivery_prices) to fetch live product/pricing data which the agent must read and use to decide invest/revoke/collect actions, exposing it to untrusted third-party content from the exchange that can materially influence tool use.

MEDIUM W009: Direct money access capability detected (payment gateways, crypto, banking).

• Direct money access detected (high risk: 1.00). The skill is explicitly built to interact with a crypto exchange's Earn/Dual Investment API and includes authenticated, write-capable commands that move funds: pionex-trade-cli earn dual invest, revoke_invest, and collect. It requires API credentials with an "Earn" permission and prescribes a mandatory dry-run + confirm workflow, product IDs, profit values, and idempotency keys. This is a specific financial-execution integration for crypto investment operations (not a generic tool), so it grants direct financial execution authority.