sp3nd

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's Step 3 "Create Cart" requires submitting arbitrary public Amazon/eBay product URLs to the SP3ND API (e.g., "items": [{"product_url": "https://www.amazon.sg/dp/ASIN", ...}]) so the system will fetch/parse open marketplace pages to build carts and determine payment amounts, meaning untrusted third‑party content can influence order creation and payment actions.

MEDIUM W009: Direct money access capability detected (payment gateways, crypto, banking).

• Direct money access detected (high risk: 1.00). The skill explicitly implements cryptocurrency payment functionality: it is designed to construct, sign, and broadcast USDC (SPL token) transfers on Solana to pay for orders. It includes step-by-step APIs and code for creating carts/orders, fetching the treasury's USDC ATA, building a transferChecked instruction plus required Memo, signing via a provided wallet_sign tool, and sending the signed transaction via Solana RPC. This is a specific financial-execution integration (USDC on Solana, x402 payments, treasury address, wallet signing), not a generic tool, and therefore grants direct financial execution authority.