bison-strategy

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The scanner (scripts/bison-scanner.py) calls mcporter tools such as market_get_asset_data, leaderboard_get_markets and market_list_instruments to ingest public market and leaderboard data (including user-generated leaderboard/trader signals) at runtime and directly uses those inputs to build conviction theses and drive create_position execution, so untrusted third-party content can materially influence actions.

MEDIUM W009: Direct money access capability detected (payment gateways, crypto, banking).

• Direct money access detected (high risk: 1.00). The skill is explicitly a trading execution strategy: it describes automatic creation of positions ("Scanner calls create_position internally" via mcporter), conviction-scaled margin and leverage settings, order-type details (FEE_OPTIMIZED_LIMIT, ensureExecutionAsTaker flag), a config file that includes "Wallet" and strategy ID, and a runtime/plugin that tracks positions and manages RatchetStop exits. These are specific market-execution capabilities (placing orders, sizing margin/leverage, and managing open positions), not generic tooling. Therefore it grants direct financial execution authority.