moai-baas-railway-ext

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). SKILL.md explicitly shows Context7 integration (e.g., context7_client.get_library_docs(context7_library_id='/railway/docs' and '/docker/docs') and get_latest_railway_documentation()) to fetch external Railway/docker documentation which the agent ingests and uses to design architectures and scaling/ deployment decisions, so third‑party doc content can materially influence actions.