sync-sdk-skill

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill accepts an optional "Documentation URL" and Step 6 ("Fetch External Documentation") explicitly instructs the agent to fetch and extract content from that URL, meaning it will ingest and interpret arbitrary third-party web pages provided by users.