build-mcp-server

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The SKILL.md explicitly includes a "Web Scraper Server" example (scraper-server/src/index.ts) that calls axios.get(url) and cheerio.load(response.data) to fetch and return arbitrary webpage text to the LLM (via the scrape_url tool), which means untrusted, user-generated third‑party content is ingested and can directly influence the agent's subsequent actions.