ios-platform

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's DeepLinkResolver (references/navigation.md) explicitly accepts universal links and .onOpenURL input, parses arbitrary external URLs and then asynchronously fetches entities via repository.fetchByID (network/API client), so untrusted third-party URLs and their content can directly influence navigation and runtime actions.