capacitor-deep-linking

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill explicitly ingests and acts on external, public link content (e.g., App.addListener('appUrlOpen', (event) => ...), handleDeepLink, Query Parameters, OAuth Callback Handling) and includes instructions to fetch/verify public files at https://myapp.com/.well-known/apple-app-site-association and assetlinks.json, so arbitrary third‑party links/hosted JSON can be read and directly drive navigation, token exchanges, and other actions.