walrasquant-strategy

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill explicitly documents and requires handling external, untrusted inputs — e.g., FastAPI web callbacks and ZeroMQ custom signals in references/execution-web-signals.md and Workflow step 2 — where arbitrary HTTP/ZeroMQ payloads are ingested by strategy handlers (on_web_cb / on_custom_signal) and used to change strategy state/behavior.

MEDIUM W009: Direct money access capability detected (payment gateways, crypto, banking).

• Direct money access detected (high risk: 1.00). The skill is explicitly a trading-strategy authoring tool for the WalrasQuant framework. It references exchange-specific examples (Binance, Bybit, OKX, etc.), order APIs and execution algorithms (create_order_ws, cancel_order_ws, create_algo_order), precision helpers for amounts/prices, and guidance for submitting and tracking orders. Those are concrete, finance-specific APIs to place and manage market orders on exchanges (crypto/asset trading), so it grants direct financial execution capability.