planning-disaster-recovery

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill includes runnable scripts and runbooks (e.g., examples/chaos/db-failover-test.sh, examples/chaos/region-failure-test.sh, scripts/automated-failover.sh and various runbook steps) that curl/dig/prometheus-query user-supplied primary/secondary URLs and Prometheus endpoints and parse their responses, so the agent would fetch and interpret arbitrary external (potentially untrusted) web/metrics content at runtime.