coingecko

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill's tools (e.g., tools/coin_prices.py, coin_historical_chart_range_by_id.py, coin_ohlc_range_by_id.py and coingecko.py) call the public CoinGecko Pro API (pro-api.coingecko.com) and return untrusted, public fields such as coin descriptions, tickers, and market data which the agent is required to read and use to make decisions, creating clear exposure to third-party content that could carry injected instructions.