appbuilder-action-scaffolder

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill's required workflow and templates explicitly ingest and act on untrusted external content — e.g., references/action-patterns.md Pattern 1 proxies arbitrary params.BACKEND_URL, and the event webhook/journaling patterns (references/action-patterns.md Pattern 7/9 and assets/event-webhook-template.js, assets/journaling-consumer-template.js) parse and act on params.__ow_body or journal URLs — so runtime actions will read user/third-party content that can materially influence behavior.