explorer-contract-verification

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The SKILL.md explicitly instructs using public explorer APIs (Etherscan V2, Routescan, Blockscout — e.g. the --verifier-url entries such as https://api.etherscan.io/v2/api?chainid=<CHAIN_ID> and the Routescan/Blockscout URLs) and the workflow requires reading their responses (verification status, source code/ABI, constructor args and on-chain bytecode) to drive verification decisions, so untrusted third‑party content can influence subsequent actions.