homeassistant-dashboard-designer

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The skill explicitly supports calling an external Stitch MCP (stitch.googleapis.com) for visual ideation and documents how to enable/use it (SKILL.md and references/dashboard_rules.md), so the agent may fetch and interpret third-party Stitch output that can influence layout/YAML decisions and tool use.