powershell-7-expert

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill accepts arbitrary API endpoints (e.g., crossplatform_automation.ps1's ApiEndpoint and rest_api_consumer.ps1 which call Invoke-RestMethod, and the TypeScript PowerShell7Manager.consumeRestApi wrapper) and fetches/parses remote JSON/response content from those open URLs, meaning untrusted third‑party content is read and interpreted as part of the workflow.