block-inventory

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The SKILL.md explicitly instructs fetching and visiting live public example URLs (e.g., https://main--aem-block-collection--adobe.aem.live/block-collection/{block-name}) and running search-block-collection-github.js to read Block Collection/GitHub pages, and that fetched public content is processed to determine block purposes—so untrusted third‑party content is ingested and can influence decisions.