odoo-frontend

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The SKILL.md explicitly describes workflows that ingest and convert external, user-provided web resources — e.g., the "Figma Integration Workflow" (takes a Figma URL and uses Figma MCP / scripts/figma_converter.py) and the "Chrome DevTools Integration Workflow" (takes a website URL and runs scripts/devtools_extractor.py) — which clearly fetch untrusted third‑party content and use it to drive code generation and subsequent actions.