beads

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The skill's RESUMABILITY.md and examples include explicit agent code to call third‑party APIs (e.g., googleapiclient.discovery.build in the "WORKING CODE" / "Queries live API (not static data)" example), so the agent may fetch and read live, user-generated third‑party content (Google Drive API) as part of its workflow.