@1390/woofi-data

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill explicitly fetches and interprets live data from public WOOFi APIs (e.g., https://sapi.woofi.com/v1/quote and https://sapi.woofi.com/v1/swap and multiple api.woofi.com endpoints as shown in SKILL.md) and is expected to read fields like tx_steps/desc and use them to build and execute wallet transactions, so third‑party responses can directly influence tool use and next actions.

MEDIUM W009: Direct money access capability detected (payment gateways, crypto, banking).

• Direct money access detected (high risk: 1.00). The skill is explicitly a DeFi trading integration (WOOFi) and includes dedicated endpoints for executing token swaps: POST /v1/swap (v1 API) that generates blockchain-ready transaction data, approval steps, and a tx_steps array intended to be signed and broadcast by a wallet. It therefore provides concrete crypto/blockchain execution functionality (swap construction, signing readiness, approval flows), not just generic data access. This matches the "Crypto/Blockchain (Wallets, Swaps, Signing)" criterion for Direct Financial Execution.