alibabacloud-resourcecenter-search

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). This skill explicitly runs Alibaba Cloud Resource Center APIs via the aliyun CLI (e.g., SKILL.md Core Workflow Step 2 and references/related-apis.md) and a helper script (scripts/query-resource-types.py) that calls "aliyun resourcecenter list-resource-types", meaning the agent ingests and acts on API responses containing user-controlled/resource metadata (names, tags, IDs) that can influence subsequent CLI commands and decisions, so untrusted third-party content can indirectly inject instructions.