aws-cloudformation

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's SOPs explicitly require fetching and parsing templates and external rule files from user-supplied URLs or S3 (validate-cloudformation-template.script.md and check-cloudformation-template-compliance.script.md require reading template content from a URL and downloading guard rules from GitHub/S3) and the lookup-resource-properties.script.md mandates fetching public CloudFormation docs, so untrusted third-party content is ingested and used to drive validation, remediation, and tool actions.