data-quality

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The skill's CLI and API explicitly accept external data files (e.g., the CLI --file argument and the API "file_url": "s3://bucket/data.csv" examples) and the agent is expected to read and act on those untrusted/user-provided datasets (validate/clean/monitor), so third-party content could materially influence its actions.