android-clean-architecture

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The SKILL.md's "Ktor Network Client (KMP)" section shows an ItemRemoteDataSource that uses HttpClient to fetch from external endpoints (client.get("api/items") with defaultRequest url("https://api.example.com/")), which clearly instructs ingesting untrusted third-party API content that the app reads and uses in its repository/workflow.