apple-docs

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The CLI explicitly allows a full http(s) URL in cmdDoc (cli.js: url = path.startsWith('http') ? path : ...) and then fetches and parses that page via getAppleDocContent → fetchText/httpFetch, so the agent can read arbitrary public web pages (untrusted third‑party content) as part of its workflow.