roach-strategy
Warn
Audited by Snyk on May 15, 2026
Risk Level: MEDIUM
Full Analysis
MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).
- Third-party content exposure detected (high risk: 0.90). SKILL.md's required install steps explicitly curl runtime.yaml and producer scripts from raw.githubusercontent.com (public GitHub), and those fetched files are parsed/executed by the runtime and producer (runtime.yaml defines the LLM gate, actions, and DSL exits), so tampered public content could materially change decisions and tool actions.
MEDIUM W009: Direct money access capability detected (payment gateways, crypto, banking).
- Direct money access detected (high risk: 1.00). The skill is explicitly a trading strategy whose runtime performs order placement and trade exits. The doc repeatedly describes the runtime executing OPEN_POSITION and exits via a FEE_OPTIMIZED_LIMIT order type (maker-first with taker fallback), manages DSL exits, uses a strategy wallet (${WALLET_ADDRESS}, ROACH_WALLET), and enforces margin/leverage/slot limits. It therefore contains specific market-order execution capabilities (sending trading transactions), not just generic scanning or HTTP tooling. This matches "Market Orders (Buying/Selling stocks or assets)" in the core rule.
Issues (2)
W011
MEDIUMThird-party content exposure detected (indirect prompt injection risk).
W009
MEDIUMDirect money access capability detected (payment gateways, crypto, banking).
Audit Metadata