alova-wormhole-usage

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). The skill explicitly accepts and fetches OpenAPI specs from URLs (see SKILL.md example "input: 'http://localhost:3000/openapi.json'") and its programmatic APIs (references/PROGRAMMATIC_API.md: readConfig/generate) parse remote OpenAPI documents that are untrusted/third‑party and are used to drive code generation and handleApi hooks, so the fetched content is interpreted at runtime and can materially change generated APIs and subsequent behavior.