alibabacloud-oss-manage-metaquery

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill explicitly fetches and processes arbitrary user-provided OSS bucket content (see SKILL.md Task 3 "Execute Semantic Search" using aliyun ossutil api do-meta-query and presign commands, and scripts/semantic_query.py which posts MetaQuery to the bucket), so untrusted, user-generated files from third‑party OSS buckets are ingested and their AI-extracted metadata can influence subsequent actions.