ratatui-tui

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill's async patterns explicitly show fetching arbitrary URLs with reqwest in references/async-patterns.md (the "Network Requests" example where response.json::() is parsed and sent as Action::DataReceived), meaning untrusted web content is ingested and can directly influence app actions and decisions.