roach-strategy

Warn

Audited by Snyk on May 15, 2026

Risk Level: MEDIUM
Full Analysis

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

  • Third-party content exposure detected (high risk: 0.90). SKILL.md's required install steps explicitly curl runtime.yaml and producer scripts from raw.githubusercontent.com (public GitHub), and those fetched files are parsed/executed by the runtime and producer (runtime.yaml defines the LLM gate, actions, and DSL exits), so tampered public content could materially change decisions and tool actions.

MEDIUM W009: Direct money access capability detected (payment gateways, crypto, banking).

  • Direct money access detected (high risk: 1.00). The skill is explicitly a trading strategy whose runtime performs order placement and trade exits. The doc repeatedly describes the runtime executing OPEN_POSITION and exits via a FEE_OPTIMIZED_LIMIT order type (maker-first with taker fallback), manages DSL exits, uses a strategy wallet (${WALLET_ADDRESS}, ROACH_WALLET), and enforces margin/leverage/slot limits. It therefore contains specific market-order execution capabilities (sending trading transactions), not just generic scanning or HTTP tooling. This matches "Market Orders (Buying/Selling stocks or assets)" in the core rule.

Issues (2)

W011
MEDIUM

Third-party content exposure detected (indirect prompt injection risk).

W009
MEDIUM

Direct money access capability detected (payment gateways, crypto, banking).

Audit Metadata
Risk Level
MEDIUM
Analyzed
May 15, 2026, 10:51 AM
Issues
2
Security Audit — snyk — roach-strategy