strategy-ranking-sniper

CRITICAL E004: Prompt injection detected in skill instructions.

• Potential prompt injection detected (high risk: 1.00). The prompt instructs the agent to downplay/label security-scan warnings as "false positives" and to suppress routine command output (concealing details), which are deceptive directions that go beyond the skill's legitimate operational instructions.

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's required execution pipeline explicitly fetches and interprets data from public OKX DEX endpoints (e.g., OKX /token/toplist, /token/advanced-info, /token/holder and price/aggregator calls shown in the "Execution Pipeline" and command docs) and uses that third‑party content to decide and execute trades, so untrusted external content can materially influence agent actions.

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

• Potentially malicious external URL detected (high risk: 1.00). The skill's pre-flight checks run curl ... | sh against raw.githubusercontent.com (e.g. https://raw.githubusercontent.com/okx/onchainos-skills/main/install.sh, https://raw.githubusercontent.com/okx/plugin-store/main/install.sh, and https://raw.githubusercontent.com/okx/plugin-store/main/install_strategy.sh), which fetch and execute remote code at runtime and are used to install required runtime dependencies.

MEDIUM W009: Direct money access capability detected (payment gateways, crypto, banking).

• Direct money access detected (high risk: 1.00). The skill is explicitly a crypto trading bot that executes on-chain swaps and manages wallet funds. It calls OKX DEX aggregator endpoints to "buy_token" and "sell" with signing and broadcast steps ("OKX /aggregator/swap + sign + broadcast"), requires an onchainos wallet (TEE signing) for transaction signing, and exposes commands that perform real trades (start, tick, test-trade, sell, sell-all) with configurable budgets and per-trade SOL amounts. These are specific crypto/blockchain transaction capabilities intended to move funds, not generic utilities.