senpi-getting-started-guide

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill calls discovery_get_top_traders (Step 2 / references/discovery-guide.md) to fetch public trader data (e.g., addresses, PnL, open positions) and the agent reads/interprets that untrusted, user-generated trading data to recommend a trader and then create a strategy, so third‑party content can materially influence actions.

MEDIUM W009: Direct money access capability detected (payment gateways, crypto, banking).

• Direct money access detected (high risk: 1.00). The skill is explicitly a trading/onboarding guide for Senpi/Hyperliquid and requires a connected MCP and a funded crypto wallet. It calls specific marketplace/bridge APIs (e.g., discovery_get_top_traders, strategy_create, strategy_get, execution_get_open_position_details, strategy_close) to create, monitor, and close mirror trading strategies, and it instructs users to fund a wallet with at least $100 USDC on specific networks. These are concrete, domain-specific financial operations (crypto wallet funding and executing market strategies/orders), not generic tooling. Therefore it grants direct financial execution capability.