cloudflare-r2

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's Workers integration and Public Buckets documentation (e.g., "Public Buckets" r2.dev URLs and the Workers patterns like handleNewUpload, handleDownload, and event queue handlers in references/workers-patterns.md) explicitly show reading objects and event messages from public R2 buckets (untrusted, user-provided content) and using that content to drive actions (generate thumbnails, route behavior), so third-party content can materially influence tool use.