add-request-protection

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The SKILL.md explicitly instructs using the Arcjet CLI (e.g., "arcjet watch", "arcjet requests list", "arcjet requests details/explain") to stream and inspect live request decisions and request payloads coming from external users via the Arcjet service, which are untrusted/user-generated inputs the agent is expected to interpret and that can directly influence rule/configuration changes.