web-framework-solidjs

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The skill's required guidance and examples (see SKILL.md and examples/resources.md) explicitly use createResource/createAsync and raw fetch calls to external APIs (e.g., fetch('https://api.example.com/users/${userId}') and various /api/* endpoints), so it ingests untrusted public third-party content that could influence runtime behavior.