apple-dev-docs

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The Coder Prompt in references/ios-app-builder-prompts.md explicitly instructs the agent to use WebFetch to fetch Apple documentation from the public third‑party URL pattern https://sosumi.ai/documentation/{path} and to consult external docs when unsure, meaning the agent will read and act on open web content that can materially influence code generation and subsequent tool actions.