gpc-metadata-sync

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The skill explicitly instructs the agent to fetch and show live Google Play store content (e.g., "gpc listings list", "gpc listings get --locale ", and image listing/sync commands) so the agent will read public store listings and images from the Google Play website before making updates, exposing it to untrusted third‑party content that can influence actions.