validated-handler

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). This skill directly parses and interprets untrusted user-provided content from HTTP requests (Object.fromEntries(new URL(request.url).searchParams and await request.json()), so it ingests arbitrary third‑party input as part of its runtime workflow.