webflow-designer-extension

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The skill's Assets API examples explicitly fetch and ingest remote, potentially user-supplied URLs (e.g., references/assets-api.md: "From Remote URL" and batch upload/replaceImageAsset examples that call fetch(url) and fetch(imageUrl)), which means the agent will read and process untrusted public third-party content.